Mid-Level Security Engineer

Location: Open, United States
Date Posted: 08-06-2018
Title:                     Mid-Level Security Engineer
Location:               Open, United States
Salary:                  $80-115K
 
We are looking for an enthusiastic professional with 5+ years of hands-on cybersecurity experience in performing and/or participating in DoD and/or NIST-based system security assessments, Privacy Assessments, continuous monitoring, and/or other Assessment and Authorization (A&A) activities. The candidate may also be part of Lunarline’s School of Cyber Security Instructors staff and may teach one or more courses as mutually agreed upon.   

 

Duties and Responsibilities:

  • Develop and assess cyber security documentation for client information systems in accordance with FISMA, NIST RMF for Federal Civilian Agencies, RMF for DoD IT, FedRAMP, and departmental standards.
  • Perform network vulnerability scanning using both automated tools as well as manual techniques; penetration testing, and/or device testing. 
  • Assist or lead technical assessments using standard industry tools such as Nessus, DB Protect, WebInspect, ACAS (for DoD), and others.
  • Identify and apply vulnerability remediations, fix procedures, and when necessary mitigation techniques. 
  • Identify and mitigate cyber security risks through formal assessment activities.
  • Participate in and lead compliance related discussions (this includes in-depth understanding of security control requirements)
  • Work with customers to resolve cybersecurity issues and concerns as well as to explain how compliance with various standards and frameworks is achieved.
  • Coordinate the day-to-day activities required to deliver a project on time and within budget.
  • Attend and participate in regular project meetings; deliver succinct and accurate status updates.
  • Understand privacy laws and regulations and how to apply them.
  • May conduct or participate in activities to identify root cause analysis, forensic evaluation, and malware analysis.
  • May manage support staff/teams. 
 

Skills and Qualifications:

Required:
  • 5+ years of experience in performing and/or participating in DoD and NIST security Assessment and Authorization (A&A) activities.
  • Working-level knowledge of FISMA, NIST/DoD RMF, and NIST SP 800-series publications.
  • Must be sufficiently familiar with typical Federal A&A documentation (e.g., System Security Plans (SSPs), System Assessment Plans (SAPs), System Assessment Reports (SARs), Plan of Actions and Milestones (POAMs), and more) in order to contribute to authorship and/or solely author such documents.
  • Experience using testing tools such as Nessus/ACAS, SCC, DISA STIGs / STIG Viewer, Wire Shark, Flying Squirrel, etc.
  • Exposure to Software Development Lifecycle (SDLC) and related terminology as it relates to Information Security/Information Assurance.
  • Self-motivated and able to work in an independent manner or as part of a team.
  • Able to write and talk about technical security issues in a clear, concise manner.
  • Exceptional organizational and planning skills.
  • Able to work in a fast-paced, deadline-driven environment.
 
Desired:
  • Previous experience teaching.
  • Technical Writer experience.
  • Experience with FedRAMP.
  • Experience with CDM tools.

 

Education:

  • Bachelor’s Degree Preferred

 

Certifications:

  • The following certifications (more than one is preferred): Lunarline, Inc. School of Cybersecurity “Certified Expert” certifications.
Company Benefits
Full affordable health benefits; Short-term and Long-term Disability; Life Insurance and AD&D Insurance paid for by Lunarline; 401(k) retirement plan with employer safe harbor matching - IMMEDIATE VESTING; Tuition and Certification Reimbursements; All federal holidays paid

Disclaimer
Lunarline is an equal opportunity employer. It is the policy of Lunarline that all employees and applicants for employment will be treated in all respects on the basis of their merit and qualifications and without regard to their race, color, national origin, age, disability, sexual orientation, religion, gender, military status, marital status or ancestry.
Lunarline participates in the E-Verify program. Therefore, any employment with Lunarline will also be contingent upon confirmation from the Social Security Administration ("SSA") and/or the Department of Homeland Security ("DHS") of your authorization to work in the United States. 
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal responsibilities from time to time, as needed.
or
this job portal is powered by CATS