Modern Technology Solutions, Inc. (MTSI) · 2 days ago
Senior Cyber Security Engineer / Information Systems Security Engineer
Wonder how qualified you are to the job?
Information Technology
Insider Connection @Modern Technology Solutions, Inc. (MTSI)
Responsibilities
Serve as the Information Systems Security Officer (ISSE) providing technical input, recommendations, and assistance with the implementation of both higher and granular-level cyber security approaches, methods and solutions that incorporate and maintain compliance to requirements resulting from laws, regulations, and other pertinent guidance.
Participate in acquisition meetings (PMR, PDR, CDR, etc.), concept of operation (CONOP) working groups, change boards, technical exchange meetings and other similar activities.
Design and develop security requirements that drive down risk while maintaining operational capability.
Work between architecture-level and implementation-level engineering meetings to maintain a system-wide view of security functions and apply risk mitigation strategies at the appropriate level.
Guide and verify defense contractors’ work against program requirements and goals. This includes participating in technical discussions, trade studies and working groups, and conducting research on industry best practices for potential implementation.
Interface with program managers to explain security requirements, risks and mitigations relative to their priorities of cost and schedule to ensure an acceptable risk tolerance.
Evaluate newly identified threats and vulnerabilities to customer information systems to ascertain the need for additional safeguards and develop timely implementation strategies to reduce risk.
Enforce the design and implementation of trusted relationships among external systems and architectures.
Assess proposed changes to customer information systems, their operation environment, and mission needs for impacts to cybersecurity architectures and continued compliance with cybersecurity requirements.
Provide inputs to development teams responsible for designing and developing organizational information systems and upgrading legacy systems.
Employ best practices when implementing security requirements for information systems including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques.
Keep abreast of current and new security technologies and threats to better support the customer in maintaining cybersecurity resilience.
Identify integration issues related to the implementation of new systems within the existing infrastructure; recommend mitigation and/or resolution options as appropriate.
Assist in the design of systems and networks that encompass multiple enclaves to include those with differing data protection/classification requirements.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
8+ years' technical experience in cybersecurity, information technology, or systems engineering.
Active TS required, SCI Eligible
Able to demonstrate understanding of cybersecurity needs of systems at varied stages of the SDLC.
Firm understanding of the DoD 8500.1-M, DoDM 5205.07, Volume 1, Joint SAP Implementation Guide (JSIG), National Institute of Standards and Technology (NIST) Special Publication 800-53, Intelligence Community Directive (ICD) Number 503.
Excellent oral and written communication skills and ability to clearly translate client technical needs into technical specifications.
Demonstrated ability to complete tasks, drive projects to closure, assimilate and correlate project information in a fast-paced environment.
Demonstrated ability to assess and articulate risk, including to non-technical audiences.
Bachelor’s degree in engineering, computer science, cybersecurity, networking, or programming.
Preferred
Experience working on DISA Security Technical Implementation Guide (STIG) implementation.
Experience working on-site in a government client environment.
Familiarity with security procedures while working in a SCIF/SAPF environment.
Cloud Security Implementation experience.
Familiarity and experience with NSA requirements for COMSEC.
Experience with DoD Acquisition Lifecycle experience and/or Rapid Acquisition / Rapid Delivery experience
Capable of applying system security engineering expertise to various client programs/processes (e.g., system security design process, engineering life cycle, information domain and cross domain solutions, identification/authentication/authorization of commercial off-the-shelf and government off-the-shelf software employment, system integration, risk management, intrusion detection, contingency planning, incident handling, configuration control, change management, continuous monitoring, auditing, assessment and authorization, confidentiality, integrity, and availability.
Master’s degree in engineering, computer science, cybersecurity, networking, or programming, (DESIRED).
Certified Information Systems Security Professional (CISSP or (CISSP-ISSEP/CISSP-ISSAP) DESIRED
Certified Cloud Security Professional (CCSP).
AWS Architect or other similar cloud technology security certification
Benefits
Starting PTO accrual of 20 days PTO/year + 10 holidays/year
Flexible schedules
6% 401k match with immediate vesting
Semi-annual bonus eligibility (July and December)
Company funded Employee Stock Ownership Plan (ESOP) - a separate qualified retirement account
Up to $10,000 in annual tuition reimbursement
Other company funded benefits, like life and disability insurance
Optional zero deductible Blue Cross/Blue Shield health insurance plan
Company
Modern Technology Solutions, Inc. (MTSI)
Modern Technology Solutions, Inc.
Funding
Current Stage
Late StageRecent News
Business Journals
2022-09-08
Company data provided by crunchbase