About
Job Description
Overview
The Sr. Cybersecurity Engineer (Validator) is responsible for providing Risk Management Framework (RMF) support to a government client in Huntsville, Alabama, Colorado Springs, Colorado, and in San Diego, CA.
Responsibilities
* Generate RMF accreditation packages and artifacts.
* Plan and execute security tests and evaluations (ST&E) and analyze results.
* Draft Risk Assessment Reports (RAR), C&A Plans, Plans of Actions and Milestones (POAM's), Security Assessment Reports (SAR), Security Assessment Plans (SAP).
* Conduct required vulnerability analysis to support mitigation and residual risk determination, and eMASS data entry.
* Provide security advice and assistance to system engineers and program managers on security-related matters, and develop security procedures, policies, and technical recommendations.
* Review security requirements, products, configurations, and cybersecurity architectures for compliance with DoD policies.
* Develop and execute security test plans, and assess cybersecurity risk of IT systems.
* Participate in collaboration meetings; act as a trusted agent to program managers and cybersecurity practitioners and track critical cybersecurity processes experience in assessing a network and/or systems using cybersecurity automated tools such as Nessus, SCAP, and any applicable Security Technical Implementation Guides (STIGs) in accordance with DISA requirements.
Qualifications
* A current active secret clearance is required to be considered for this role.
* An IAM-Level II certitification is required (CISSP, CAP, CASP, CISM, or GSLC).
* Five (5) years' of IA/cybersecurity experience, with two (2) years specific to the Risk Management Framework (RMF) process.
* Demonstrated experience performing vulnerability scans on various operating systems using approved DISA tools.
* Experience working within a UNIX/Linux environment.
* Demonstrated experience with eMASS and C&A/A&A package entry.
* Knowledge of DoD 8500 Series Policies (DoDD 8500.1, DoDI 8500.2, DoD 8500.01, DoDI 8510.01 (DIACAP and RMF)), CNSSI 4009, NIST SP 800-53 Security Control Catalog, CNSS 1253, CNSSI 1253, and NIST Special Publication (SP) 800-53.
* ACAS, VRAM, HBSS and WSUS familiarity.
Sentek Global is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected Veteran status.
Options