Apply on Employer Site

nLogic · 1 month ago

NL-25-101 Senior Cyber Lead Engineer

El Segundo, CA

Full-time

Onsite

Senior Level, Lead/Staff

$195K/yr - $250K/yr

25+ years exp

nLogic is seeking a Senior Cyber Lead Engineer to join their team in El Segundo, CA. The role involves supporting Systems Engineering & Integration activities for space communication systems, collaborating with various stakeholders, and leading technical discussions to ensure cybersecurity compliance and risk management.

Cyber SecurityTest and MeasurementTraining

Comp. & Benefits

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Proposing, coordinating, implementing, and enforcing all Department of the Air Force information system security policies, standards, and methodologies

Understanding of vulnerability assessments using the Assured Compliance Assessment Solution (ACAS), Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG), and the Security Content Automation Protocol (SCAP) Compliance Checker, incorporating automated Benchmarks in support of an Risk Management Framework (RMF) Approval to Operate decision

Experience reviewing security control continuous monitoring, security audits, risk analysis and developing mitigation strategies for DoD information systems

Ensures software, hardware, and firmware complies with appropriate security configuration guidelines (e.g., security technical implementation guides /security requirement guides)

During system development, recommends protective or corrective measures, in coordination with the ISSM, when a security incident or vulnerability is discovered

During system development advises acquisition program leadership on RMF process and artifacts required to obtain an ATO

Coordinates activities of cyber security staff to support program cyber security requirements and generate artifacts to obtain a system ATO

Recommends exceptions, deviations, or waivers to cybersecurity requirements

Preparing certification letters and Memoranda of Agreement (MoA), Authorization to Connect (ATC) packages, Interconnection Security Agreement (SIA), and Security Impact Assessments with system owners for interface and networking implementations

Support SSC program offices with ensuring security, quality, timeliness, mission partner support, completeness, and regulatory compliance of ATO RMF documentation

Support the following responsibilities: security control assessor (SCA) and Security Technical Implementation Guide (STIG) curated to DOD/DAF/USSF baselines, audit standards, and plan of actions and milestones (POAM)

Attend cleared expert threat briefings; have oversight of security program design, incident response plans, cyber risk assessments, and attack surface assessments, conduct tabletop exercises, and breach readiness reviews

Completes and maintains required cybersecurity certification in accordance with (IAW) AFMAN 17-1303

Qualification

Cybersecurity certification (IAM Level III)Information Assurance/CybersecurityRisk Management Framework (RMF)System Security PlansNIST SP 800-37Military organization experienceSecurity TestEvaluation (ST&E)Technical writingTeam leadershipCollaborationProblem-solving

Required

Active Top Secret clearance required

BA or BS degree in engineering, physics, chemistry, mathematics, computer science, network, and telecommunications; information systems, information technology, or computer information systems

25+ years of work experience in Information Assurance/Cybersecurity

25+ years of experience leading teams to mission success in a dynamic fast paced environment

15 years of experience working in a military organization cybersecurity role with military tactical, space, or enterprise systems

5 years experience writing measurable and testable cyber security system requirements to ensure the defense industrial complex delivers cyber survivable systems in support of national defense

5+ years experience working in a military system program office fielding new capabilities

Cybersecurity certification (IAM Level III) in accordance with DoD 8570.01-M guidance

Experience creating reviewing and updating artifacts in support of NIST SP 800-37 Risk Management Framework (RMF) in accordance with DODI 8510.01

Senior developer or reviewer of system security plans, Security Assessment Plans/Reports, Risk Assessment Plan/Report, Plan of Action and Milestones (POA&M), and associated cybersecurity artifacts

Experience identifying Common Criteria and National Information Assurance Partnership (NIAP) certified technologies and the DISA Approved Products List (APL)