VetsEZ

Cyber Security Engineer

VetsEZ

full-time

Posted on:

Origin:  • 🇺🇸 United States

Visit company website
AI Apply
Manual Apply

Job Level

Mid-LevelSenior

Tech Stack

CloudCyber Security

About the role

  • VetsEZ is seeking a Cyber Security Engineer (System Steward) to support a Department of Veterans Affairs (VA) project.
  • This role involves guiding cybersecurity compliance efforts through the NIST RMF, supporting the Authority to Operate (ATO) process, and ensuring systems maintain a strong security posture.
  • The ideal candidate will bring expertise in cloud and enterprise security, risk assessments, and compliance documentation.
  • The candidate must reside within the continental US.
  • Responsibilities: Lead ATO activities, including creation of RMF artifacts and POAMs.
  • Support security documentation such as Incident Response, Contingency Plans, and Disaster Recovery.
  • Conduct risk and impact assessments, implementing security controls and mitigations.
  • Analyze authorization documents, identify gaps, and coordinate remediation plans with stakeholders.
  • Utilize tools like eMASS, Nessus, Nmap, Wireshark, and SCAP for compliance assessments.
  • Apply NIST 800-53 and FedRAMP security controls across IaaS, PaaS, and SaaS environments.
  • Provide security guidance for system design, development, and configuration.
  • Deliver clear reports and security briefings to technical and non-technical audiences.
  • Take on additional tasks and responsibilities as needed to support team objectives and ensure the success of the project.

Requirements

  • Bachelor’s degree in Cybersecurity, Information Systems, or related field.
  • 5+ years of experience in Information Security, including 3+ years in Cyber Security or Cloud Security.
  • Hands-on experience with RMF, ATO processes, and federal cybersecurity standards.
  • Strong understanding of IT systems, cloud environments, and compliance frameworks (e.g., FedRAMP, NIST).
  • Proficiency in evaluating system vulnerabilities and implementing security controls.
  • Additional Qualifications:
  • Required certification: ISC2 CISSP.
  • Additionally, must have one or more of the following certifications: IAT II, IAM II, IASAE II, Security+, CISA, CEH, CAP, SSCP, CCSP, or similar.
  • Experience supporting VA, DoD, GSA, or other federal agencies.
  • Ability to obtain government clearance.