M.C. Dean, Inc.
Cyber Security Specialist 4
M.C. Dean, Inc., Mc Lean, Virginia, us, 22107
Cyber Security Specialist 4
ID 11785
Location Tysons, VA
Apply Now (https://phg.tbe.taleo.net/phg04/ats/careers/v2/applyRequisition?org=MCDEAN&cws=62&rid=11785)
Position Summary
You will work in a team environment alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts responsible for supporting Information System Security Engineering efforts. General responsibilities include but are Not Limited to :
Working closely and supporting team members, vendors, and government customers
Implementing DoD Security Technical Implementation Guides (STIGs) on traditional Information Technology (IT) and Operational Technology (OT) systems
Assisting in the development and verification of documentation necessary to complete the DoD RMF assessment and authorization process
Conducting ICS/SCADA system inventories following DoD guidance
Conducting vulnerability scanning and document system vulnerabilities
Supporting ISO standardization and Quality inspections
Participating in continuous improvement of organizational cybersecurity posture
Position / Candidate Requirements
Requires Top Secret Clearance.
Education:
5-7 Years of Experience with a Master's Degree in Information Technology, Risk Management, Cybersecurity
7-9 Years of Experience with a Bachelor's Degree in Information Technology, Risk Management, Cybersecurity
10-12 Years of Experience with an Associate's Degree in Information Technology, Risk Management, Cybersecurity
13-15 Years with a High School Diploma
Required Progressive Experience:
Working with industry and government agencies on the design of platforms and integrated systems
Working on government and/commercial projects implementing cybersecurity requirements in a variety of industrial control systems (e.g., building management, electronic security, fire alarm/mass notification, electrical distribution, power management, etc.)
Proficiency with ACAS and HBSS and mitigation strategies
Developing policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks, and data
Assessment, mitigation, and closure of network vulnerabilities and vulnerability management
eMASS
Establishing, managing, and tracking of Plan of Action & Milestones (POA&M)
Applying STIGs to servers, databases, applications, and other hardware
Security Readiness Review (SRR) Tools (scripts and ACAS)
Ability to identify, maintain, and troubleshoot control network components
Excellent understanding of the DoD RMF lifecycle and NIST 800-53 controls implementation
Awareness of NIST Special Publication 800-82, Guide to Industrial Control Systems (ICS) Security and UFC 4-010-06 Unified Facilities Criteria (UFC) Cybersecurity of Facility
Working knowledge of operational control systems and implementing a variety of security assessment tools
Working knowledge of other operational control systems
Familiarity with DoDIN CCRI/CCORI and CYBERCOM TASKORDS
Familiarity with various industry products
One of the Required Certifications:
CASP CE
CISSP
CISSP – ISSAP
CISSP - ISSEP
CSSLP
CISA
CISM
Strong Oral, Written and Presentation Skills with the ability and experience communicating directly with Customers
Demonstrated background working with multidisciplinary teams
Demonstrated time management and organization skills to meet deadlines and quality objectives
Strong MS Excel, Word, PowerPoint, AUTOCAD, Cameo and Visio Skills is a plus.
Ability to travel domestically and internationally up to 25% of the time.
Abilities:
Exposure to computer screens for an extended period of time.
Sitting for extended periods of time.
Reach by extending hands or arms in any direction.
Have finger dexterity in order to manipulate objects with fingers rather than whole hands or arms, for example, using a keyboard.
Listen to and understand information and ideas presented through spoken words and sentences.
Communicate information and ideas in speaking so others will understand.
Read and understand information and ideas presented in writing.
Apply general rules to specific problems to produce answers that make sense.
Identify and understand the speech of another person.
#CJ
#ZR
Applicants for this position may be required to obtain or provide proof of flu shots or of other vaccinations depending on customer requirements and nature of the position or demonstrate a valid basis for exception.
EOE Minorities/Females/Protected Veterans/Disabled
VEVRAA Contractor
ID 11785
Location Tysons, VA
Apply Now (https://phg.tbe.taleo.net/phg04/ats/careers/v2/applyRequisition?org=MCDEAN&cws=62&rid=11785)
Position Summary
You will work in a team environment alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts responsible for supporting Information System Security Engineering efforts. General responsibilities include but are Not Limited to :
Working closely and supporting team members, vendors, and government customers
Implementing DoD Security Technical Implementation Guides (STIGs) on traditional Information Technology (IT) and Operational Technology (OT) systems
Assisting in the development and verification of documentation necessary to complete the DoD RMF assessment and authorization process
Conducting ICS/SCADA system inventories following DoD guidance
Conducting vulnerability scanning and document system vulnerabilities
Supporting ISO standardization and Quality inspections
Participating in continuous improvement of organizational cybersecurity posture
Position / Candidate Requirements
Requires Top Secret Clearance.
Education:
5-7 Years of Experience with a Master's Degree in Information Technology, Risk Management, Cybersecurity
7-9 Years of Experience with a Bachelor's Degree in Information Technology, Risk Management, Cybersecurity
10-12 Years of Experience with an Associate's Degree in Information Technology, Risk Management, Cybersecurity
13-15 Years with a High School Diploma
Required Progressive Experience:
Working with industry and government agencies on the design of platforms and integrated systems
Working on government and/commercial projects implementing cybersecurity requirements in a variety of industrial control systems (e.g., building management, electronic security, fire alarm/mass notification, electrical distribution, power management, etc.)
Proficiency with ACAS and HBSS and mitigation strategies
Developing policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks, and data
Assessment, mitigation, and closure of network vulnerabilities and vulnerability management
eMASS
Establishing, managing, and tracking of Plan of Action & Milestones (POA&M)
Applying STIGs to servers, databases, applications, and other hardware
Security Readiness Review (SRR) Tools (scripts and ACAS)
Ability to identify, maintain, and troubleshoot control network components
Excellent understanding of the DoD RMF lifecycle and NIST 800-53 controls implementation
Awareness of NIST Special Publication 800-82, Guide to Industrial Control Systems (ICS) Security and UFC 4-010-06 Unified Facilities Criteria (UFC) Cybersecurity of Facility
Working knowledge of operational control systems and implementing a variety of security assessment tools
Working knowledge of other operational control systems
Familiarity with DoDIN CCRI/CCORI and CYBERCOM TASKORDS
Familiarity with various industry products
One of the Required Certifications:
CASP CE
CISSP
CISSP – ISSAP
CISSP - ISSEP
CSSLP
CISA
CISM
Strong Oral, Written and Presentation Skills with the ability and experience communicating directly with Customers
Demonstrated background working with multidisciplinary teams
Demonstrated time management and organization skills to meet deadlines and quality objectives
Strong MS Excel, Word, PowerPoint, AUTOCAD, Cameo and Visio Skills is a plus.
Ability to travel domestically and internationally up to 25% of the time.
Abilities:
Exposure to computer screens for an extended period of time.
Sitting for extended periods of time.
Reach by extending hands or arms in any direction.
Have finger dexterity in order to manipulate objects with fingers rather than whole hands or arms, for example, using a keyboard.
Listen to and understand information and ideas presented through spoken words and sentences.
Communicate information and ideas in speaking so others will understand.
Read and understand information and ideas presented in writing.
Apply general rules to specific problems to produce answers that make sense.
Identify and understand the speech of another person.
#CJ
#ZR
Applicants for this position may be required to obtain or provide proof of flu shots or of other vaccinations depending on customer requirements and nature of the position or demonstrate a valid basis for exception.
EOE Minorities/Females/Protected Veterans/Disabled
VEVRAA Contractor