A3 Technology, Inc. is seeking a Cybersecurity Engineer to join our Cybersecurity group. The Cybersecurity Engineer will support the design, engineering, development and implementation of cybersecurity solutions for the IT enterprise.
This position is 100% onsite.
Responsibilities:
- Support the preparation, review, analysis and recommendation of Authority to Operate briefings, memos and plans.
- Combine technical knowledge of systems and cybersecurity expertise to tactically apply information security/information assurance principles to review planned system changes to determine potential system security posture impact, ensure timely identification and reporting of planned system changes with potential cybersecurity impact and support Cyber Operations activity.
- Review, evaluate and make recommendations on Systems Security Authorization documents (Security Assessment Reports, System Security Plans, System Contingency Plans, System Characterization Documents) to determine if risk is accurately portrayed and/or assessed.
- Support the preparation, review and maintenance of reports, presentations and briefings (Emerging technologies, Zero Trust, Strategic plan, etc.).
Support the architecture, engineering, development and implementation of Cybersecurity Enterprise Solutions, Enhancements and Improvements (e.g., Cloud, Data Flow Monitoring and Zero Trust initiatives).
- Define and develop a threat model to identify vulnerabilities, assess security controls and determine/mitigate risk.
- Assess system modification architectures for policy compliance.
- Support the architecture, engineering, development and implementation or integration of Cyber Supply Chain Risk Management Solutions, Enhancements and Improvements.
- Support the evaluation and analysis of governance drivers including Executive Orders, Binding Operational Directives, OMB Memorandums, agency Guidance/Policy, NIST standards and frameworks, etc.
- Support annual assessment and reporting of the tailored NIST Cybersecurity Framework (CSF) including participation in workshops, reviews of updates, support of technical analysis and workgroups and development of reports and briefings.
- Define and maintain the set of security requirements to be implemented in systems based on, but not limited to, the following: Federal Information Processing Standards (FIPS) Publication 199, National Institute of Standards and Technology (NIST) 800-53, NIST 800-60, agency policies and memorandums, Executive Orders and OMB mandates.
- Support reviews of the architecture, engineering, development and implementation of systems/services incorporating technologies and capabilities that are new to the enterprise systems/services including participation in vendor meetings, demo/prototyping efforts and evaluation of proof-of-concept devices.
- Provide input into international cybersecurity guidance and workgroups to ensure consideration of agency Cybersecurity perspectives.
- Coordinate with Stakeholders and support the architecture, development and prototyping on architecture efforts, such as Zero Trust Active Directory Services.
Skills Required:
- Experience supporting cybersecurity solutions for a large enterprise (over 35,000 users).
- Experience with federal IT security rulesets such as NIST.
- Experience evaluating enterprise architecture solutions and possible implementation risks.
- Experience supporting annual assessments and remediating POA&M findings.
- Experience with cybersecurity policy planning and analysis.
- Experience providing system development lifecycle support for cybersecurity services.
- Experience writing white papers and developing reports and presentations for audiences at variable technical levels.
- Excellent written and communication skills.
- Self-motivated to take ownership of projects.
Skills Preferred:
- Certificate in an IT security area (e.g. CISSP, CISM).
- Experience working with a large organization (>35,000 customers).
- Experience collaborating with peer and client teams.
Education:
- Bachelor’s degree in Information Technology Engineering or related field and 2-10 years of IT experience.
Additionally, US Citizenship or documented proof of eligibility to work in the US is a must. Upon receiving a conditional offer of employment, candidates will undergo a Government investigation and must meet eligibility requirements for Government clearance. Verification of past employment, education and references is also required. It is imperative that candidates be either a US citizen or a current green card holder with the last 3 consecutive years as a resident of the US.
At A3 Technology, Inc., we take pride in being an Equal Opportunity Employer (EEO) and Affirmative Action (AA) employer. We're committed to considering all qualified candidates for employment without regard to race, religion, color, sex, sexual orientation, gender identity, age, protected veteran status, disability, national origin, genetic information or any other protected status.