ID
2024-2611
Job Locations
|
US-IL-Scott AFB
|
Category |
Information Technology
|
Type |
Regular Full-Time
|
Overview
DecisionPoint Corporation is seeking a highly experienced Senior Cyber Engineer to join the team, supporting the Risk Management Framework (RMF) and cybersecurity requirements for the USTRANSCOM operations. The Senior Cyber Engineer will be responsible for designing, implementing, and managing the security aspects of complex information systems, ensuring compliance with Department of Defense (DoD) standards and policies. This position requires proactive development of secure configurations, conducting vulnerability assessments, managing continuous monitoring activities, and collaborating with key stakeholders to ensure security across the entire system lifecycle. This position is onsite at Scott AFB.
Duties & Responsibilities
Lead all cybersecurity activities, including system risk assessment, threat identification, and mitigation strategies in compliance with DoD RMF and NIST SP 800-53 standards.
- Develop, maintain, and update System Security Plans (SSP), Plan of Action and Milestones (POA&M), and related accreditation documents to achieve Authority to Operate (ATO) and Interim Authorization to Test (IATT).
- Manage and perform manual and automated DISA STIGs/SRGs security scans, using tools such as Fortify, ACAS, Nessus, webInspect, and SonarQube.
- Provide vulnerability mitigation and implement secure coding practices, ensuring systems meet or exceed DoD cybersecurity policies.
- Support continuous monitoring processes, integrating RMF into the software development lifecycle (SDLC) through automation and regular scans.
- Collaborate with system administrators and developers to remediate findings from Security Content Automation Protocol (SCAP) scans, including supporting PPSM compliance and STIG validation.
- Lead the development and integration of security-focused configuration management according to NIST SP 800-128.
- Develop cloud migration strategies with a focus on secure deployment, leveraging automation tools such as Docker, Kubernetes, and AWS cloud security services.
- Ensure compliance with USTRANSCOM cybersecurity guidelines, providing secure application development, encryption technologies, and secure network protocols.
- Provide detailed security reports and manage cybersecurity incidents while coordinating with USTRANSCOM for incident response and remediation.
- Conduct security assessments, including RMF assessments and authorizations, and support IATT activities for operational testing with live data.
Qualifications
- Active Secret Clearance.
- Must hold an active an IAT Level II certification; CompTIA Security+ CE highly preferred.
- Minimum of 8 years of experience in information assurance, cybersecurity, or related fields, specifically within the DoD environment.
- Bachelor's degree in Computer Science, Information Systems, Engineering, or other related technical disciplines.
- Expertise in secure software development, vulnerability assessment, and security control implementation.
- Proficiency in conducting vulnerability scans using Fortify, ACAS, Nessus, SonarQube, and related security tools.
- Strong knowledge of RMF, NIST SP 800-53, and DoD cybersecurity policies.
- Experience with cloud platforms (AWS, Azure, GCP), containerization (Docker, Kubernetes), and microservices architecture.
- Proficiency with encryption technologies, secure network protocols, and STIG compliance.
- Demonstrated ability to manage security-focused configuration management and continuous monitoring.
- Excellent communication and collaboration skills, with the ability to present technical details to non-technical stakeholders.
- Proven track record of developing security documentation and supporting cybersecurity operations.
Our Equal Employment Opportunity Policy
- EEO and Affirmative Action Policy: DecisionPoint Corporation is an Equal Employment Opportunity and Affirmative Action employer. It is the policy of DecisionPoint Corporation to provide equal employment opportunity in accordance with all applicable Equal Employment Opportunity/Affirmative Action laws, directives and regulations to all employees and qualified applicants without regard to race, ethnicity, color, religion, national origin, sex, age, disability status, pregnancy, sexual orientation, gender identity, genetic information, protected veteran status, or any other protected status under Federal, State or Local laws.
- Pay Transparency Policy: In accordance with Presidential Executive Order 13665, DecisionPoint Corporation will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.
- Authorization to Share Resume and Personal Information: By expressing your interest and submitting your resume for this position, you authorize DecisionPoint Corporation to share your resume, as well as personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should DecisionPoint Corporation. or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.
|