The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
or US Person with the ability to obtain a Public Trust Clearance. Responsibilities: Lead a team of security engineers for delivery of Cybersecurity project management, continuous diagnostics and mitigation, threat mitigation and incident response, security architecture support, critical infrastructure protection, patch management, vulnerabilitymanagement, risk management … IDS), Network Access Control (NAC), Domain Name Systems (DNS), Remote Access VPN (RA-VPN), Application Delivery/Load Balancing, Secure Sockets Layer (SSL) Certificate Management solutions Lead implementation of new security projects including estimation, design, development, testing and deployment and track status throughout Support operations team with cybersecurity guidance … capabilities Demonstrated experience working in large Federal agency preferably in HHS. Possess the knowledge of security best practices, security solutions, and methodologies for risk management Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques more »
or US Person with the ability to obtain a Public Trust Clearance. Responsibilities: Lead a team of security engineers for delivery of Cybersecurity project management, continuous diagnostics and mitigation, threat mitigation and incident response, security architecture support, critical infrastructure protection, patch management, vulnerabilitymanagement, risk management … IDS), Network Access Control (NAC), Domain Name Systems (DNS), Remote Access VPN (RA-VPN), Application Delivery/Load Balancing, Secure Sockets Layer (SSL) Certificate Management solutions Lead implementation of new security projects including estimation, design, development, testing and deployment and track status throughout Support operations team with cybersecurity guidance … capabilities Demonstrated experience working in large Federal agency preferably in HHS. Possess the knowledge of security best practices, security solutions, and methodologies for risk management Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques more »
or US Person with the ability to obtain a Public Trust Clearance. Responsibilities: Lead a team of security engineers for delivery of Cybersecurity project management, continuous diagnostics and mitigation, threat mitigation and incident response, security architecture support, critical infrastructure protection, patch management, vulnerabilitymanagement, risk management … IDS), Network Access Control (NAC), Domain Name Systems (DNS), Remote Access VPN (RA-VPN), Application Delivery/Load Balancing, Secure Sockets Layer (SSL) Certificate Management solutions Lead implementation of new security projects including estimation, design, development, testing and deployment and track status throughout Support operations team with cybersecurity guidance … capabilities Demonstrated experience working in large Federal agency preferably in HHS. Possess the knowledge of security best practices, security solutions, and methodologies for risk management Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques more »
or US Person with the ability to obtain a Public Trust Clearance. Responsibilities: Lead a team of security engineers for delivery of Cybersecurity project management, continuous diagnostics and mitigation, threat mitigation and incident response, security architecture support, critical infrastructure protection, patch management, vulnerabilitymanagement, risk management … IDS), Network Access Control (NAC), Domain Name Systems (DNS), Remote Access VPN (RA-VPN), Application Delivery/Load Balancing, Secure Sockets Layer (SSL) Certificate Management solutions Lead implementation of new security projects including estimation, design, development, testing and deployment and track status throughout Support operations team with cybersecurity guidance … capabilities Demonstrated experience working in large Federal agency preferably in HHS. Possess the knowledge of security best practices, security solutions, and methodologies for risk management Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
The Cyber Security Engineer shall have security Assessment and Authorization (A&A) expertise, to include but not limited to: ICD 503, Federal Information Security Management Act (FISMA), Xacta, and National Institute of Standards and Technology (NIST). Primary Responsibilities Lead multi-disciplined teams in the design and implementation of … and configure collection services and tools Work with team members to move data to the appropriate data stores Meet hands-on RMF responsibilities Lead VulnerabilityManagement and ConMon tasks with Enterprise Security Services Basic Qualifications Must possess an active Top Secret Security Clearance with ability to obtain SCI … Jira, Confluence, RocketChat) Working knowledge with XACTA 360, Tenable Security Center, Nessus, Trelix ePO, ACAS, HBSS and Audit enterprise security services Proficient in ACAS Vulnerability and STIG scanning, reporting, management and remediation Viewed as an industry expert in the Risk Management Framework (RMF) steps one thru six more »
Government including, but not limited to, cybersecurity security and engineering principles and design and implementation of National Security Manager guidance Analyze continuous monitoring, configuration management, vulnerabilitymanagement, asset management, software management and self-reported data to identify trends and anomalies cybersecurity performance and mitigation of more »
to ensure staff are aware of their responsibilities and can act in a manner that minimizes risk to the organization. Regularly report to senior management about the status of the organization's security posture, regulatory compliance status, audit findings, and any other security-related issues and plans. Regularly review … in the decision-making process to obtain needed information, make the most appropriate decisions, and ensure buy-in and understanding of resulting decisions. Task Management Skills: The candidate is expected to proactively determine project or assignment requirements by breaking them down into tasks and identifying types of equipment, and … Publication (SP) 800-53, Revision 4 or Revision 5 Demonstrated success in achieving project completion in a timely manner. This includes having effective project management skills and correctly assessing the time required to carry out given tasks. Experience using Cyber Security relevant tools, systems, and applications to include but more »
Leidos Defense group has an opening for a highly motivated individual. The Information Assurance Engineer position at MacDill AFB, FL supports the Global Solutions Management-Operations II (GSM-O II), Joint Communications Support Element (JCSE). The JCSE team provides en-route, early entry, scalable C4 support to Regional … Key elements of this position include: Capture and refine information security requirements and ensure their integration into information technology components and information systems: Perform vulnerability assessments, to determine weaknesses and exploit methods in systems/networks; Perform cybersecurity analysis and hardening of complex IT systems; and conducting cybersecurity mitigations … on design solutions to comply with Risk Management Framework (RMF) cybersecurity requirements. Responsibilities include: Develop Security plan of action and milestones (POA&M) for all open security findings identified during the development phase of modernization on the end -to-end enterprise infrastructure (Data Center, SATCOM Gateway, and deployed kits more »
a Principal Information Systems Security Officer (ISSO). You will be responsible for researching, generating, and validating security controls that support the customers' Risk Management Framework (RMF) and ICD 503 Security Accreditation as part of an Agile team. Responsibilities include defining, creating, and maintaining Systems Security Plans (SSP) to … for vulnerabilities identified in the system. Assist ISSEs and/or Security Engineers with implementation of the Continuous Monitoring program. Participate in the change management process. Basic Qualifications: Active Top-Secret Clearance with Poly Five or more years of information assurance and cyber security engineering experience Experience with the … Risk Management Framework (RMF) and ICD 503 Security Accreditation processes. Experience coordinating with Information System Security Managers (ISSM) in testing, documenting, and achieving accreditation of systems throughout the development process, and achieving operational acceptance. Candidates must have a BS in Computer Science, Engineering, Information Technology, System Administration, Cyber Security more »
a Principal Information Systems Security Officer (ISSO). You will be responsible for researching, generating, and validating security controls that support the customers' Risk Management Framework (RMF) and ICD 503 Security Accreditation as part of an Agile team. Responsibilities include defining, creating, and maintaining Systems Security Plans (SSP) to … for vulnerabilities identified in the system. Assist ISSEs and/or Security Engineers with implementation of the Continuous Monitoring program. Participate in the change management process. Basic Qualifications: Active Top-Secret Clearance with Poly Five or more years of information assurance and cyber security engineering experience Experience with the … Risk Management Framework (RMF) and ICD 503 Security Accreditation processes. Experience coordinating with Information System Security Managers (ISSM) in testing, documenting, and achieving accreditation of systems throughout the development process, and achieving operational acceptance. Candidates must have a BS in Computer Science, Engineering, Information Technology, System Administration, Cyber Security more »
be leading 5 to 10 VAT members, perform research on current threats and vulnerabilities, will be responsible for authoring security advisories and manage enterprise vulnerability compliance and will conduct vulnerability assessments of IT systems. The VAT Lead will be assisting the government with the Enterprise Information System VulnerabilityManagement (ISVM) compliance validation, execute Vulnerability Scans and will conduct vulnerability assessments of IT systems. Perform research on current vulnerabilities, support Incident Response and SOC functions as related to vulnerabilities. Will be responsible for authoring security advisories. Basic Qualifications: BS degree Science, Technology, Engineering, Math or … experience may be considered in lieu of a degree. Relevant experience is within one of the following areas pentesting, security technical assessments or supporting vulnerability scanning/management program. Experience managing teams Experience with vulnerability analysis Ability to identify false positives within scan results and work with more »
VulnerabilityManagement & Risk Specialist – London hybrid - £70,000 - £80,000 + Benefits Locke & McCloud are looking for an experienced VulnerabilityManagement Risk Specialist to join our clients growing Cyber Security function. In this role you will work with our clients various vendors and 3rd party suppliers … to manage security risks internally and externally, in addition to participating in incident response and vulnerabilitymanagement activities. We are looking for people who have a strong background in managing risks with vendors, incident response, vulnerabilitymanagement, and stakeholder management. Main Responsibilities: Collaborate across various teams … to establish and maintain an effective vulnerabilitymanagement program. Identify, prioritise, and assess vulnerabilities across our clients infrastructure, systems, and applications. Develop and implement strategies to mitigate risks associated with identified vulnerabilities. Coordinate with vendors to assess and manage risks associated with third-party products and services. Lead more »
