Systems Security Engineer

Dahlgren, VA
Active Secret Clearance 

 @Orchard is supporting a growing Federal contract with proven capabilities in cybersecurity. We are seeking a skilled Systems Security Engineer to be proposed for a new project supporting the Navy. This role will be based out of Dahlgren, VA and will be responsible for supporting the creation of hybrid software, web, and hardware products from initial specifications to final roll-out and maintenance, including sophisticated systems that run on the web. If awarded, this could be a fantastic opportunity to grow your career with a company that has built strong relationships within Defense and Intelligence. If selected, you will be asked to sign a letter of intent to join the team upon program award.

As the Systems Security Engineer you will: 

• Supporting A&A Cybersecurity policy and control evaluations.
• Preparing supporting RMF activities or current Government-approved processes for packages and artifacts.
• Obtaining approvals to operate.
• Implementation of security postures.
• Providing SME support in Information Assurance and Cybersecurity Life-Cycle management, coordination, and implementation as required by the applicable Authorizing Official.
• Provide RMF A&A ISSE support for all ashore and afloat packages.
• Responsible to integrate various network operating systems, application programs, and hardware devices.
• Manage development cycle associated with producing resilient software, hardware, and web application, including specification, design, coding, testing, and maintenance.
• Perform classified and unclassified tasks and actions to support A&A activities, A&A package reviews, scanning, reporting and remediation, and overall system security; consult with relevant A&A Validation teams in normal course of activities.
• Assist in development and execution of A&A plans for complex networks and IT systems; may include providing ISSO, Information Systems Security Engineer, and DIO support, and A&A analysis supporting documentation and artifacts in support of A&A, and compliant system administration across variety of environments supporting department offices, conference facilities, and land-based tactical equipment suites and laboratories.
• Provide IT Project and System Administrative support for accreditation including full authority to operate, interim authority to operate, authority to connect, Interim authority to test, Local authority to proceed and other required authorizations to support normal operations, special user events and requirements, and test events.
• Implement and maintain system security requirements, including STIGs, anti-virus software installations and updates, ESS installation and monitoring, responding to Cyber Directives, and other direction to ensure IT and Information Assurance controls are maintained.
• Perform and review vulnerability scans on all ISs using latest approved vulnerability scanning tools and signatures and ensure results properly mitigated, reviewed, documented, and reported.
• Support, test, monitor, and report any changes in ISs that may affect security posture and/or performance of IS.
• Monitor all system and audit logs and report potential security issues to ISSM; assist ISSM, Cybersecurity Branch Head, DIO, incident handling team, and law enforcement personnel in any investigations involving suspected security violations.
• Maintain accurate and up-to-date information in all required A&A applications.
• Provide subject matter expertise to perform cybersecurity operations for Corporate Operations IT and Technical Department IT.
• Collaborate with Government and other Contractor personnel to coordinate test and operation activities for Department IT.
• Develop, collect, maintain and submit A&A artifacts.
• Provide support for installing, managing, and troubleshooting any issues with vulnerability scanning software; perform scans on monthly and ad hoc basis for all Department IT and generate/consolidate scanning reports in centralized location; provide vulnerability scanning support for IT; responsible for opening trouble tickets with respective scanning software support for scanning and IA support.
• Responsible for creation, development, support, and lifecycle sustainment of all RMF A&A processes, including, but not limited to:
  • Supporting A&A Cybersecurity policy and control evaluations.
  • Preparing supporting RMF activities or current Government-approved processes for packages and artifacts.
  • Obtaining approvals to operate.
  • Implementation of security postures.

Qualifications: 

• • Four (4) years professional experience IT security with DoD or Navy.
  • Experience with vulnerability analysis, risk analysis, scanning for viruses and other detrimental software.
  • Qualified experience in accreditation of systems and audits.
  • Designated as IAT II level with T3.
  • Bachelor’s Degree in Engineering discipline desired but not required.
  • Professional experience in systems engineering a plus.