Descrição

Cybersecurity Engineer (NL-20-091): Candidate must be a U.S. Citizen. An active Security Clearance is required. Some travel will be required. This is a full-time position located in Huntsville, AL.Area 1Support Model Based Security Engineering MBSecE. This involves all aspects of MBSE for Cybersecurity. Support in developing, implementing, and maintaining a Cybersecurity Implementation Plan (CIP) IAW Government identified Security Controls for all products and information systems (such as operational, test, development, and maintenance systems) IAW the Governing policies. The implementation shall consist of security implementation, risk assessment, authorization support, system monitoring, and documentation within the Systems Security Plan (SSP) for each system and be aligned with the Program Cybersecurity Strategy and Cybersecurity PMP. Support cyber forensics and other test events analysis, which includes findings, pen testing results, or other cyber and vulnerability modeling that may come from the MBSecE.Strongly preferred to have Cybersecurity, Software Engineering, Network or Computer Engineering degree (Bachelors, or Associates or equivalent education/training). Cybersecurity certification in line with DoD 8570 preferred.Area 2Support the performance of cybersecurity engineering. This will involve supporting the implementation of cybersecurity requirements over the entire engineering lifecycle including: Requirements, Design, Development, Integration, and Test. Support system analysis & test for cyber threats, cyber test activities, and the cybersecurity of large scale events. Support cyber risk assessments and the development of risk mitigation plans. Support the engineering analysis of patches and various system updates and upgrades to determine system consequence of these changes. Work RMF and CSF compliance plans including CCI consideration and creation of necessary compliance documentation. Create, update or otherwise assist with program cyber guidance, performance, control, engineering, etc. documents. Support software assurance activities. Support cyber threat intelligence activities. Support the development and maintenance of cyber scanning, patching, remediation, tools and applications. Utilize Agile methodologies for planning and execution of tasks. Support other related tasks as necessary.Strongly preferred to have Cybersecurity, Software Engineering, Network or Computer Engineering degree (Bachelors, or Associates or equivalent education/training). Cybersecurity certification in line with DoD 8570 preferred.Area 3Support of the implementation of the Cybersecurity Manager (CSM) which is a sophisticated SIEM system involving Splunk, Snort, and OSSEC capabilities along with Arcsight. Experience in all 3 a must. Support implementation of vulnerability mitigations and software patches to correct Information Assurance (IA)/Cybersecurity (CS) vulnerabilities discovered during periodic IA/CS audits, formal SCA activities, and applicable DoD-issued Information Assurance Vulnerability Alerts (IAVAs) by providing quarterly updates to be installed on accredited systems and documented as a process within the CIP. Support cybersecurity test or assessment events to include assessment of test results and identification of false positives and current or planned mitigations. Support design and implementation of cybersecurity infrastructure to protect the confidentiality, integrity, and availability of systems and ensure the successful interconnection with a DoD-approved Computer Network Defense Service Provider (CNDSP) to meet mandatory Tier 2 CND monitoring and reporting requirements.Strongly preferred to have Cybersecurity, Software Engineering, Network or Computer Engineering degree (Bachelors, or Associates or equivalent education/training). Cybersecurity certification in line with DoD 8570 preferred.Area 4Cybersecurity Engineering Support for Modeling and Simulation Development. Support development and delivery of the component and subsystem software source code, executables, input data, output data, make files, and all artifacts required to compile the source code and execute M&S, component and subsystem software documentation, component and subsystem software review products, and component and subsystem software Resource Data Reports. Support to develop and deliver M&S software and hardware products in compliance with the Risk Management Framework and Cybersecurity Policies. Support the Software Assurance (SwA) requirements for this system as part of the SDP and the CSIP. Provide technical expertise to define the cybersecurity requirements, support and provide certification and accreditation of the systems IAW the CIP & CEIP to maintain readiness of M&S to support intended uses. Support to post cybersecurity and RMF artifacts, associated documentation and cybersecurity metrics monthly for collaboration with the Government. Cyber Engineering Implementation Plan requirement implementation which speaks to the entire lifecycle or engineering, requirements, design, code and unit test, integration, test and verification. Will also involve various cyber hardening activities like scanning, patching and flowing all up as part of RMF packages. Strongly preferred to have Cybersecurity, Software Engineering, Network or Computer Engineering degree (Bachelors, or Associates or equivalent education/training). Cybersecurity certification in line with DoD 8570 preferred.Area 5Support plans, design, integrate, execute, analyze, and report activities and results for Cyber campaigns to include: Cyber Table Top Exercises; Controls Validation Tests; Cooperative Vulnerability and Penetration Assessments (CVPA); and Adversarial Assessments as described in the ITP and the GTP. The Supplier shall support Operational cyber test activities. The Supplier shall support the Contractor to conduct Cyber Testing per IAW the ITP, the GTP, and the Cyber Implementation Plan (CIP). Support development, sustainment, use and configuration of the CRIAB (Cyber Range in-a-Box) which will involve creating, testing, pen testing, exploiting, etc. virtual versions of systems and networks. Support Element Cyber test planning in support of defined Cyber events, tests or campaigns. Support test planning to include development of test objectives, test and data requirements, test configurations, integration and analysis plans, test planning documentation, supporting schedules, and determination of test event applicable TIRs and support determination of test event applicable Test BMD Discrepancy Reports (Test BDRs). Support development of test infrastructure requirements, documentation, data management plans, and TIR/Test BDR burn-down plans.Familiarization with Windows, Red Hat, Solaris, Unix (AIX and HPUX) operating systems is strongly preferred. Strongly preferred to have Cybersecurity, Software Engineering, Network or Computer Engineering degree (Bachelors, or Associates or equivalent education/training). Cybersecurity certification in line with DoD 8570 preferred.Area 6Cybersecurity Engineering Support for Updating current program subsystems and obsolescence efforts. This will involve engineering analysis for cyber vulnerabilities in concert with these system upgrades. Supporting RMF control implementation and evaluation. Cyber Engineering Implementation Plan requirement implementation which speaks to the entire lifecycle or engineering, requirements, design, code and unit test, integration, test and verification. Will also involve various cyber hardening activities like scanning, patching and flowing all up as part of RMF packages. Likely some pen testing elements or at least cyber scrutiny of design.Familiarization with Windows, Red Hat, Solaris, Unix (AIX and HPUX) operating systems is strongly preferred. Strongly preferred to have Cybersecurity, Software Engineering, Network or Computer Engineering degree (Bachelors, or Associates or equivalent education/training). Cybersecurity certification in line with DoD 8570 preferred.Candidate must be a U.S. Citizen. An active Security Clearance is required. Some travel will be required. This is a full-time position located in Huntsville, AL. CVNLPENG

Antes de se inscrever para essa posição, você precisa enviar seu currículo online. Clique no botão abaixo para continuar.


AJUDE COMPARTILHANDO:

Mais vagas:


ATENÇÃO: Todas as vagas ofertadas neste site são repassadas por nossos parceiros. A vaga anunciada é de inteira responsabilidade de seu autor. Não possuímos quaisquer vínculos com a empresa ou o anunciante. Temos o único objetivo de informar a população em geral acerca de tais vagas, com o intuito de colaborar com a redução do índice de desemprego em nosso país. Se por acaso o participante detectar que se trata de uma informação falsa ou tentativa de golpe nós informe imediatamente por e-mail: Denunciar Vaga