Janus Soft
Cyber Security Engineer
Janus Soft, Virginia, Minnesota, United States, 55792
Job DescriptionWe are seeking an experienced Cyber Security Engineer to join our team. The successful candidate will play a crucial role in ensuring the security and compliance of our systems and processes. This position involves working closely with customers, architects, developers, and engineers to implement and maintain robust information security measures.
Key responsibilities include:
Advising and assisting customers with the Lifecycle Assessment and Authorization (A&A) process
Developing and reviewing System Security Plans
Conducting technical security assessments and vulnerability management
Coordinating with various teams to ensure uniform application of security policies and enterprise solutions
Creating and reviewing A&A Body of Evidence (BOE) documentation
Assessing and mitigating system security threats throughout the program life cycle
The ideal candidate will have a strong background in cybersecurity, information assurance, and compliance with industry standards and regulations.
Mandatory Skills
Demonstrated experience advising and assisting customers with the Lifecycle Assessment and Authorization (A&A) process
Demonstrated experience advising and assisting customers with development of System Security Plans
Demonstrated experience using COTS/GOTS and custom tools and processes to scan, identify, contain, mitigate, and remediate vulnerabilities and intrusions
Demonstrated experience monitoring, tracking, and updating status of systems in the assessment queue
Demonstrated experience coordinating technical security assessments of computing environments and systems to identify vulnerabilities and non-compliance with established Information Assurance (IA) standards and regulations
Demonstrated experience assisting architects, developers, and engineers in the identification and implementation of appropriate information security controls
Demonstrated experience creating and reviewing A&A Body of Evidence (BOE) documentation, providing assessment on compliance of its content for A&A adjudication
Demonstrated experience validating and verifying system security requirements definitions and analysis and establishing system security designs for controls
Demonstrated experience assessing and mitigating system security threats or risks throughout the program life cycle
Desired Skills
Demonstrated experience creating and reviewing A&A Body of Evidence (BOE) documentation for Sponsor's use in A&A adjudication
Demonstrated experience supporting the design, development, implementation, and integration of IA and security systems for networking, computing, virtualization, cloud, and enclave environments
Demonstrated experience in Cybersecurity, Information Assurance, Information Technology, or equivalent
Demonstrated experience implementing security and risk mitigations in compliance with IC, FISMA, and NIST policies
Demonstrated experience supporting multiple complex programs simultaneously, prioritizing work appropriately
Demonstrated ability to deliver tailored briefings on complex information security issues to diverse audiences
Demonstrated experience with the Sponsor A&A tracking tool and best practices for its use
Demonstrated experience with Sponsor's security scanning requirements and documentation best practices
Desired Certifications:
Certified Information System Security Professional (CISSP)
CSSLP (Certified Secure Software Lifecycle Professional)
CompTIA Security+
CAP Certified (Certified Authorization Professional)
#J-18808-Ljbffr
Key responsibilities include:
Advising and assisting customers with the Lifecycle Assessment and Authorization (A&A) process
Developing and reviewing System Security Plans
Conducting technical security assessments and vulnerability management
Coordinating with various teams to ensure uniform application of security policies and enterprise solutions
Creating and reviewing A&A Body of Evidence (BOE) documentation
Assessing and mitigating system security threats throughout the program life cycle
The ideal candidate will have a strong background in cybersecurity, information assurance, and compliance with industry standards and regulations.
Mandatory Skills
Demonstrated experience advising and assisting customers with the Lifecycle Assessment and Authorization (A&A) process
Demonstrated experience advising and assisting customers with development of System Security Plans
Demonstrated experience using COTS/GOTS and custom tools and processes to scan, identify, contain, mitigate, and remediate vulnerabilities and intrusions
Demonstrated experience monitoring, tracking, and updating status of systems in the assessment queue
Demonstrated experience coordinating technical security assessments of computing environments and systems to identify vulnerabilities and non-compliance with established Information Assurance (IA) standards and regulations
Demonstrated experience assisting architects, developers, and engineers in the identification and implementation of appropriate information security controls
Demonstrated experience creating and reviewing A&A Body of Evidence (BOE) documentation, providing assessment on compliance of its content for A&A adjudication
Demonstrated experience validating and verifying system security requirements definitions and analysis and establishing system security designs for controls
Demonstrated experience assessing and mitigating system security threats or risks throughout the program life cycle
Desired Skills
Demonstrated experience creating and reviewing A&A Body of Evidence (BOE) documentation for Sponsor's use in A&A adjudication
Demonstrated experience supporting the design, development, implementation, and integration of IA and security systems for networking, computing, virtualization, cloud, and enclave environments
Demonstrated experience in Cybersecurity, Information Assurance, Information Technology, or equivalent
Demonstrated experience implementing security and risk mitigations in compliance with IC, FISMA, and NIST policies
Demonstrated experience supporting multiple complex programs simultaneously, prioritizing work appropriately
Demonstrated ability to deliver tailored briefings on complex information security issues to diverse audiences
Demonstrated experience with the Sponsor A&A tracking tool and best practices for its use
Demonstrated experience with Sponsor's security scanning requirements and documentation best practices
Desired Certifications:
Certified Information System Security Professional (CISSP)
CSSLP (Certified Secure Software Lifecycle Professional)
CompTIA Security+
CAP Certified (Certified Authorization Professional)
#J-18808-Ljbffr