|
Security Engineer, Senior Principal - Arlington Virginia
Company: Chenega Corporation Location: Arlington, Virginia
Posted On: 05/05/2024
Req ID: 30857 Summary Security Engineer, Senior Principal Arlington, VA Chenega IT Enterprise Services (CITES) offers forward-thinking technology solutions to federal agencies and the DoD. Formed in 2016 to serve federal customers CONUS, CITES has grown quickly into a best practices leader for the modern federal enterprise. Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employer's core culture? If so, Chenega Military, Intelligence & Operations Support (MIOS) could be the place for you! Join our team of professionals who support large-scale government operations by leveraging cutting-edge technology and take your career to the next level! The Security Engineer, Senior Principal will perform the tasks in coordination with government personnel to provide the support services and solutions necessary to analyze, assess, integrate, enhance, improve, modernize, implement, test, sustain, and maintain the security posture and capabilities. Responsibilities -
Participate in the system, network, and security requirements development and documentation processes. -
Provide support of cybersecurity network domain Certification and Accreditation (C&A) support and execution activities. -
Perform the necessary efforts to analyze, assess, evaluate, integrate, improve, implement, test, sustain, and maintain the cybersecurity posture and capabilities required by the network domain operations compliance requirements. -
Develop and prepare the required security control documents or artifacts and conduct security control assessments, tests, and evaluations required by the respective network authorities and C&A processes. -
Perform all necessary cyber domain activities to ensure the baselines follow the respective network domain-mandated standards and authorization to connect requirements. -
Develop and document security design artifacts and the associated security controls that meet the security acceptance criteria and package the accreditation and authorization documents in support of each domain Certification and Accreditation process. -
Prepare and document the risk mitigations and maintain and update the Plan of Action and Milestones (POA&M) as required by the network domain Authorizing Official (AO). -
Perform technical vulnerability scanning, secure configuration assessments, and penetration testing, analyze the scan results, recommend action plans, and update the POA&M accordingly. -
Support Assessment and Authorization (A&A) and cybersecurity Compliance and Auditing processes and inspections for all enterprise systems and networks; ensure validity and accuracy review of all associated documentation. -
Perform compliance reviews of computer security plans, perform risk assessments, and validate and perform security test evaluations and audits. -
Analyze and define security requirements for information protection for enterprise systems and networks. -
Assist in the development of security policies. -
Analyze the sensitivity of the information and perform vulnerability and risk assessments based on defined sensitivity and information flow. -
Other duties as assigned. Qualifications -
BA/BS degree required -
10+ years of experience -
Experience, including implementation of attribute-based security classification services within network environments or similar certified (i.e., Sentris or similar experience), with PL3 experience. -
Certifications: Meet DoD 8140 & 8570 as required -
Top Secret clearance required with the ability to obtain an SCI clearance. Knowledge, Skills and Abilities: |
|