CAE Inc
Cybersecurity Engineer
CAE Inc, Tampa, Florida, us, 33646
About This RoleWho We Are:CAE Vision:
Our vision is to be the worldwide partner of choice in defense and security, civil aviation, and healthcare by revolutionizing our customers’ training and critical operations with digitally immersive solutions to elevate safety, efficiency, and readiness.
CAE Defense & Security Mission:
CAE's Defense and Security business unit focuses on helping prepare military customers to develop and maintain the highest levels of mission readiness.
CAE Values:
Empowerment, Innovation, Excellence, Integrity and OneCAE make us who we are and we strive to make a difference in the world while helping each other succeed.
What We Have to Offer:Comprehensive and competitive benefits package and flexibility that promotes work-life balance.
A work environment where all employees are valued, respected and safe.
Freedom to succeed by enabling team members to deliver, take initiatives and make decisions.
Recognition, professional development, advancement and having fun!
SummaryCAE is seeking a Cybersecurity Engineer with a Can-Do attitude. This engineer must be adaptable and creative in finding solutions to complex technical problems. The Cybersecurity engineer will be responsible for providing technical expertise and support to CAE Programs and Cybersecurity Staff. The Cybersecurity Engineer is involved in most cyber-related technical decision making on programs, performing system hardening, vulnerability scanning, system integration, and participating in coldstart. Additionally, the Cybersecurity Engineers advise the ISSM and ISSOs, and are involved in producing artifacts for the ATO’s body of evidence.The Cybersecurity Engineer participates with software and hardware approvals, assisting with research, providing analysis, assessing risk and making recommendations. They assist in the sustainment of authorized systems, create, test and install patch updates and updates to DoD guidance for system lockdown. The Cybersecurity Engineers use vulnerability scanners such as ACAS, SCAP and E-STIG.Documentation is extremely important to Cybersecurity. Authorization paperwork is required. The Cybersecurity Engineer produces much of the authorization paperwork.Essential Duties and ResponsibilitiesAssist in preparing, maintaining, and implementing SSPs, under ISSM oversight, for government approval.
Participate in update/management of SCTM.
Assist in authoring and updating the Risk Assessment Report (RAR).
Assist in creating and maintaining System Diagrams, Data Flow Diagrams, Boundary diagrams.
Update of Ports Protocols and Services.
Assist in POA&M Management.
Participate in Creating and executing the Security Assessment Plan/Procedures.
Assist in gathering COVs/LOVs and maintaining the sanitization plan.
Facilitate Software/Hardware Approvals.
Assist in Technical Security Management: Firewalls, Data Protection Controls, Patching, Encryption, Certificates, vulnerability scanning (ACAS/SCAP/E-STIG).
Continuous Monitoring.
Patch/STIG.
Annual ATO Package Review.
Peer Reviewing program security documents.
Attending and presenting in Design reviews, Program Meetings, Technical Interchange Meetings and IPT meetings.
Assist in compliance monitoring. Reviewing, evaluating and updating STIG Checklists.
Participate in providing input to Proposal cost and technical volumes.
Assist in Cost Account Management.
High level system administrator skills under Windows or Linux (prefer both).
Experience with Software Development.
Experience with Configuration Management (version control).
Qualifications and Education RequirementsB.S. degree in Computer Science, Computer Engineering, Information Technology, Electrical Engineering or other technical equivalent.
Five years directly related experience in implementation of DOD security requirements and contractor/government information security.
At least one of DoD 8570.01-M Information Assurance Management (IAM) Level II Approved Baseline Certification (CAP, CASP+CE, CISM, CISSP (or Associate), GSLC, or CCISO).
Experience with NIST Special Pamphlet (SP) 800-37 Guide for Applying the Risk Management Framework, NIST SP 800-53 Rev. 5 Security and Privacy Controls for Federal Information Systems and Organizations.
Experience documenting compliance/non-compliance of security controls in the Enterprise Mission Assurance Support Service (eMASS).
Incumbent must hold current or be eligible for DOD Personnel Security Clearance at Top Secret level.
Thorough knowledge and experience with the NISPOM, DOD security related instructions and directives, specific services’ security related regulations required.
Extensive experience with hardware/software platforms to include MS Windows, Linux, UNIX.
Military service or military environment familiarity, customs/protocol experience preferred.
Ability to communicate, interact and collaborate with management, executive personnel and military personnel including senior officer levels required. Detail oriented; work with minimal supervision, analytical and problem solving capability.
Direct experience with classified DoD networks.
Experience obtaining and maintaining ATO for classified network.
Must maintain IAM required Certification(s).
Security ResponsibilitiesMust comply with all company security and data protection / usage policies and procedures. Personally responsible for proper marking and handling of all information and materials, in any form. Shall not divulge any information, or afford access, to other employees not having a need-to-know. Shall not divulge information outside company without management approval. All government and proprietary information will be accessed and stored electronically on company provided resources.Incumbent must be eligible for DoD Personal Security Clearance.
Work EnvironmentDuties performed in an office environment and manufacturing facility.
Must be able to work overtime, on and off-shifts as required.
Physical DemandsThe physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.Employee is regularly required to sit, talk or hear, in person, in meetings and by telephone.
Manual dexterity to operate computers or other standard office equipment; and reach with hands and arms.
Able to support rack mounted equipment (up to 7 feet off the ground).
Other DutiesPlease note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for their job. Duties, responsibilities, and activities may change at any time with or without notice.CAE USA Inc. is an EOE/AA employer and gives consideration for employment to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. If you’d like more information about your EEO rights as an applicant under the law, please click here
Know Your Rights: Workplace Discrimination is Illegal
.PAY TRANSPARENCY NONDISCRIMINATION PROVISION: The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.Position Type : RegularCAE thanks all applicants for their interest. However, only those whose background and experience match the requirements of the role will be contacted.Equal Opportunity Employer
CAE is an equal-opportunity employer committed to diversity, equity, and inclusion. As "One CAE," we take affirmative action to ensure equal opportunity for all applicants regardless of race, nationality, colour, religion, sex, gender identity and expression, sexual orientation, disability, neurodiversity, Veteran status, age, or other legally protected characteristics.If you don't see yourself fully reflected in every job requirement listed in the job posting, we still encourage you to reach out and apply. At CAE, everyone is welcome to contribute to our success. If reasonable accommodation is needed to participate in the job application or interview process, please get in touch with us at
rh-hr@cae.com .
#J-18808-Ljbffr
Our vision is to be the worldwide partner of choice in defense and security, civil aviation, and healthcare by revolutionizing our customers’ training and critical operations with digitally immersive solutions to elevate safety, efficiency, and readiness.
CAE Defense & Security Mission:
CAE's Defense and Security business unit focuses on helping prepare military customers to develop and maintain the highest levels of mission readiness.
CAE Values:
Empowerment, Innovation, Excellence, Integrity and OneCAE make us who we are and we strive to make a difference in the world while helping each other succeed.
What We Have to Offer:Comprehensive and competitive benefits package and flexibility that promotes work-life balance.
A work environment where all employees are valued, respected and safe.
Freedom to succeed by enabling team members to deliver, take initiatives and make decisions.
Recognition, professional development, advancement and having fun!
SummaryCAE is seeking a Cybersecurity Engineer with a Can-Do attitude. This engineer must be adaptable and creative in finding solutions to complex technical problems. The Cybersecurity engineer will be responsible for providing technical expertise and support to CAE Programs and Cybersecurity Staff. The Cybersecurity Engineer is involved in most cyber-related technical decision making on programs, performing system hardening, vulnerability scanning, system integration, and participating in coldstart. Additionally, the Cybersecurity Engineers advise the ISSM and ISSOs, and are involved in producing artifacts for the ATO’s body of evidence.The Cybersecurity Engineer participates with software and hardware approvals, assisting with research, providing analysis, assessing risk and making recommendations. They assist in the sustainment of authorized systems, create, test and install patch updates and updates to DoD guidance for system lockdown. The Cybersecurity Engineers use vulnerability scanners such as ACAS, SCAP and E-STIG.Documentation is extremely important to Cybersecurity. Authorization paperwork is required. The Cybersecurity Engineer produces much of the authorization paperwork.Essential Duties and ResponsibilitiesAssist in preparing, maintaining, and implementing SSPs, under ISSM oversight, for government approval.
Participate in update/management of SCTM.
Assist in authoring and updating the Risk Assessment Report (RAR).
Assist in creating and maintaining System Diagrams, Data Flow Diagrams, Boundary diagrams.
Update of Ports Protocols and Services.
Assist in POA&M Management.
Participate in Creating and executing the Security Assessment Plan/Procedures.
Assist in gathering COVs/LOVs and maintaining the sanitization plan.
Facilitate Software/Hardware Approvals.
Assist in Technical Security Management: Firewalls, Data Protection Controls, Patching, Encryption, Certificates, vulnerability scanning (ACAS/SCAP/E-STIG).
Continuous Monitoring.
Patch/STIG.
Annual ATO Package Review.
Peer Reviewing program security documents.
Attending and presenting in Design reviews, Program Meetings, Technical Interchange Meetings and IPT meetings.
Assist in compliance monitoring. Reviewing, evaluating and updating STIG Checklists.
Participate in providing input to Proposal cost and technical volumes.
Assist in Cost Account Management.
High level system administrator skills under Windows or Linux (prefer both).
Experience with Software Development.
Experience with Configuration Management (version control).
Qualifications and Education RequirementsB.S. degree in Computer Science, Computer Engineering, Information Technology, Electrical Engineering or other technical equivalent.
Five years directly related experience in implementation of DOD security requirements and contractor/government information security.
At least one of DoD 8570.01-M Information Assurance Management (IAM) Level II Approved Baseline Certification (CAP, CASP+CE, CISM, CISSP (or Associate), GSLC, or CCISO).
Experience with NIST Special Pamphlet (SP) 800-37 Guide for Applying the Risk Management Framework, NIST SP 800-53 Rev. 5 Security and Privacy Controls for Federal Information Systems and Organizations.
Experience documenting compliance/non-compliance of security controls in the Enterprise Mission Assurance Support Service (eMASS).
Incumbent must hold current or be eligible for DOD Personnel Security Clearance at Top Secret level.
Thorough knowledge and experience with the NISPOM, DOD security related instructions and directives, specific services’ security related regulations required.
Extensive experience with hardware/software platforms to include MS Windows, Linux, UNIX.
Military service or military environment familiarity, customs/protocol experience preferred.
Ability to communicate, interact and collaborate with management, executive personnel and military personnel including senior officer levels required. Detail oriented; work with minimal supervision, analytical and problem solving capability.
Direct experience with classified DoD networks.
Experience obtaining and maintaining ATO for classified network.
Must maintain IAM required Certification(s).
Security ResponsibilitiesMust comply with all company security and data protection / usage policies and procedures. Personally responsible for proper marking and handling of all information and materials, in any form. Shall not divulge any information, or afford access, to other employees not having a need-to-know. Shall not divulge information outside company without management approval. All government and proprietary information will be accessed and stored electronically on company provided resources.Incumbent must be eligible for DoD Personal Security Clearance.
Work EnvironmentDuties performed in an office environment and manufacturing facility.
Must be able to work overtime, on and off-shifts as required.
Physical DemandsThe physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.Employee is regularly required to sit, talk or hear, in person, in meetings and by telephone.
Manual dexterity to operate computers or other standard office equipment; and reach with hands and arms.
Able to support rack mounted equipment (up to 7 feet off the ground).
Other DutiesPlease note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for their job. Duties, responsibilities, and activities may change at any time with or without notice.CAE USA Inc. is an EOE/AA employer and gives consideration for employment to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. If you’d like more information about your EEO rights as an applicant under the law, please click here
Know Your Rights: Workplace Discrimination is Illegal
.PAY TRANSPARENCY NONDISCRIMINATION PROVISION: The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.Position Type : RegularCAE thanks all applicants for their interest. However, only those whose background and experience match the requirements of the role will be contacted.Equal Opportunity Employer
CAE is an equal-opportunity employer committed to diversity, equity, and inclusion. As "One CAE," we take affirmative action to ensure equal opportunity for all applicants regardless of race, nationality, colour, religion, sex, gender identity and expression, sexual orientation, disability, neurodiversity, Veteran status, age, or other legally protected characteristics.If you don't see yourself fully reflected in every job requirement listed in the job posting, we still encourage you to reach out and apply. At CAE, everyone is welcome to contribute to our success. If reasonable accommodation is needed to participate in the job application or interview process, please get in touch with us at
rh-hr@cae.com .
#J-18808-Ljbffr