Senior Cyber Security Engineer

Overview

cyDaptiv Solutions is seeking a Sr. Cyber Security Engineer with experience supporting Federal and DoN cyber security and information assurance projects to work a contract in Sasebo, Japan. The Sr. Cyber Security Engineer must have a thorough knowledge of the Risk Management Framework (RMF), security principles, concepts, policies, and regulations and be able to identify risks in information systems and work with system administrators and engineers to resolve security weaknesses. Specific knowledge of the Department of Navy RMF Process Guide is a plus.

The successful candidate will have experience identifying and documenting security control implementations. The candidate must also have experience working with various stakeholders at all levels and be able to manage and coordinate RMF/A&A activities in a collaborative manner.

Senior Cyber Security Engineer Responsibilities

• Lead the Assess and Authorize (A&A) authorization IAW DoDI 8510.01 Risk Management Framework (RMF) for DoD Information Technology (IT).
• Create, maintain, and validate Authorization to Operate (ATO) packages for new and existing systems. The RMF artifacts will be maintained in Enterprise Mission Assurance Support System (eMASS).
• Apply validator experience to determine mitigation strategies and record testing results in the Risk Analysis and Remediation (RAR) Plan and Plan of Action and Milestones (POA&M).
• Provide subject matter expertise in all cyber security initiatives and help in explaining new RMF guidance. Recommend cyber security requirements to be included in the design, installation, operation, upgrade, or replacement of information systems.
• Draft documentation needed to announce new cyber security initiatives and participate in building and implementing processes surrounding cyber security.
• Provide cyber security reports to agency leadership, conduct vulnerability and compliance scans, and participate in the process to obtain ATO status for systems determined by agency leadership.
• Comply with cyber security program implementation plans and ensure compliance with agency management policies.
• Ensure compliance with data security policies and relevant legal and regulatory requirements in accordance with agency directives and applicable Risk Management Framework (RMF) requirements.
• Ensure appropriate changes and improvement actions are implemented as required.
• Ensure compliance with protection requirements, control procedures, incident management reporting, remote access requirements, and system management for all systems under scope.
• Foster an innovative and inclusive team-oriented work environment.

Required Qualifications

• Bachelor’s degree or higher in Computer Science, Information Systems/Technology or engineering discipline preferred.
• A minimum of 6 years of directly related experience.
• Extensive knowledge in applying IT security techniques and methods.
• Extensive knowledge in NIST Risk Management Framework in Federal/Civilian and Department of Navy environments.
• Proficient knowledge of eMASS.
• Ability to work independently with minimal supervision.

Preferred Qualifications

• Knowledge of Department of Navy RMF Process Guide
• Certified Navy Qualified Validator
• Experience with ACAS and SCAP tools
• Experience with Facility Related Control Systems
• Bilingual (Japanese, English)

Professional Certifications

• IAT Level III

Job Type:

• Full Time – Onsite (Sasebo, Japan)
• Company Paid Relocation

Security Clearance:

• Active Secret or Top Secret required

Compensation

• starting $120,000.00 per year