Apply on Employer Site

Cape Fox Federal Contracting Group · 1 month ago

Senior Systems Security Engineer

Dahlgren - NSWC - Dahlgren, VA 22448 US (Primary)

Full-time

Onsite

Senior Level

$150K/yr - $185K/yr

6+ years exp

Cape Fox Federal Contracting Group is seeking a highly skilled Senior Systems Security Engineer to support a federal government client. The role involves ensuring system interoperability, cybersecurity compliance, and operational effectiveness by developing technical solutions and managing configurations in alignment with DoD and Navy standards.

ConstructionConsultingCyber SecurityHealth CareInformation TechnologyManagement ConsultingProfessional ServicesProject ManagementTraining

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Support the development, evaluation, and implementation of Authorization and Accreditation (A&A) cybersecurity policies, controls, and procedures in accordance with DoD and Navy RMF requirements

Apply knowledge of system security engineering principles throughout the engineering lifecycle, including cryptography, access control, and risk management

Develop and implement security measures for systems, networks, and data to protect against threats

Conduct comprehensive security control assessments to ensure system compliance with applicable cybersecurity frameworks, DISA STIGs, and organizational policies

Prepare, document, and maintain Risk Management Framework (RMF) packages and associated artifacts throughout all RMF steps to support system accreditation and continuous monitoring

Coordinate and facilitate the approval-to-operate (ATO) process by preparing required documentation, addressing findings, and ensuring timely submission to Authorizing Officials (AOs)

Implement and maintain system security postures, including technical safeguards, access controls, configuration management, and vulnerability mitigation strategies

Provide subject matter expertise (SME) in Information Assurance (IA) and cybersecurity lifecycle management, supporting system owners, ISSMs, and other stakeholders throughout the RMF process

Collaborate with cross-functional technical teams and Government cybersecurity personnel to identify risks, develop mitigation plans, and ensure compliance across classified and unclassified systems

Develop and maintain detailed security documentation, including CONOPS, SSPs, POA&Ms, PPS lists, and other required artifacts supporting system authorization and audits

Participate in security reviews, technical working groups, and change control boards, providing technical recommendations and risk assessments for proposed system modifications

Qualification

Information Assurance Technical Level IIIVulnerability analysisRisk management framework (RMF)TEMPEST testingDISA STIG implementationCommunication skillsInterpersonal skillsProblem-solving skills

Required

Six (6) years of professional experience in relation to IT security with the DoD or Navy

Experience with vulnerability analysis, risk analysis, SCAP scans, DISA Security Technical Implementation Guide (STIG) implementation, scanning for viruses, and other detrimental software

Qualified experience in the accreditation of systems and audits

Conducts and leads TEMPEST testing using the approved test plan, the production test procedures, and the current National TEMPEST Standard

Strong communication, interpersonal, and problem-solving skills are crucial for collaborating with various stakeholders

Must hold a Bachelor's degree in an Engineering discipline

Must have Information Assurance Technical Level III certification

Must hold an active Top Secret clearance

Must have authorization to work in the United States as defined by the Immigration Reform Act of 1986