Leading Path Consulting

Cyber Security Project Engineer

Leading Path Consulting

full-time

Posted on:

Location Type: Office

Location: McLean • Virginia • 🇺🇸 United States

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

Cyber SecurityElasticSearchFirewallsLinuxPythonSplunkTCP/IPTypeScript

About the role

  • Active TS/SCI w/ FS Poly required.
  • Support assessment and authorization (A&A) of critical systems.
  • Detect adversary behavior and improve the defensive posture of the customer's information systems.
  • Use various tools and methodologies to evaluate systems and applications for vulnerabilities.
  • Verify protection against adversary intent and evaluate cybersecurity processes to protect and defend against adversaries.
  • Collaborate with stakeholders, developers, and external teams including customer security managers to fulfill accreditation requirements.
  • Document processes and procedures in CONOPS, system security, contingency, configuration management and other plans.
  • Facilitate customer concurrences required for risk-based decisions and waivers.
  • Assist customers with decisions impacting security posture and compliance with NIST 800-53 requirements.

Requirements

  • Active TS/SCI w/ FS Poly required
  • 10+ years or relevant degree plus 5 years of demonstrated cybersecurity expertise.
  • Ability to work closely with stakeholders, developers, and external teams including customer security managers (ISSMs), organizational leadership, and key personnel.
  • Identify requirements for documentation associated with system categorization, the System Security Plan, and systems risk assessment as required under NIST 800-53/53A.
  • Assess system compliance with NIST requirements, identifying weaknesses and evaluating planned remedial actions based upon those requirements.
  • Support control implementation assessment and reporting and monitoring processes using cyber security and assessment management systems.
  • Understanding of perimeter controls (firewalls), access control mechanisms, and network architectures.
  • Strong understanding of methodologies for researching and documenting software and hardware vulnerabilities.
  • Skilled in cross-team collaboration and effective communication to fulfill specific accreditation requirements.
  • Strong verbal and written communication/cooperation within a team context.
  • Ability to work within fast-paced customer environments.
  • Demonstrated skill documenting processes and procedures in CONOPS, system security, contingency, configuration management and other plans.
  • Demonstrated ability to facilitate customer concurrences required for risk-based decisions requiring waivers.
  • Experience assisting the customer with decisions impacting the security posture and compliance of their systems and networks with requirements as documented in NIST 800-53 and its revisions.
  • Preferred: Knowledge of the customer's organization, their network systems and infrastructure, processes and procedures, and request and approval tools.
  • Preferred: Experienced in scripting/program languages such as Bash, Powershell, or Python.
  • Preferred: Ability and knowledge of network/packet analysis (Wireshark/TCPDump).
  • Preferred: Proficient in Linux, Windows, and TCP/IP networking.
  • Preferred: Skilled with and/or demonstrated technical aptitude with vulnerability and risk assessment tools such as Elasticsearch or Splunk SIEMs, Rapid7 Nexpose, and IDS/IPS monitoring and alerting
Benefits
  • Vacation – 5 weeks of accrued paid vacation per year (i.e., 8.33 hours accrued per pay period worked)
  • Holidays - Paid holidays published annually by the Office of Personnel Management, excluding Inauguration Day
  • 100% paid for Health Benefits* (United Healthcare, Guardian Dental, VSP Vision, MetLife, Life and Disability Insurance and annual $1500 employer HSA contribution on qualified plans) *health benefits kick in the 1st of the month following your start date
  • 6% 401k Contribution (3% paid out during each pay period, the additional 3% will be paid out as a lump sum in Q1 each year)
  • Training Reimbursement – Approved training and education expenses will be reimbursed

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
cybersecurity expertisesystem security planrisk assessmentvulnerability assessmentnetwork architecturesscriptingpacket analysisLinuxWindowsTCP/IP networking
Soft skills
cross-team collaborationeffective communicationverbal communicationwritten communicationstakeholder engagementdecision facilitationdocumentation skillsorganizational leadershipcustomer serviceteam cooperation
Certifications
Active TS/SCIFS Poly