Swift
Cyber Security Systems Engineer
Swift, Herndon, VA
The Swift Group is looking for an experiencedCyber Security Systems Engineer to join a technology-based program supporting a key government customer. This program will deliver engineering services for network infrastructure as well as sophisticated enterprise computing infrastructure including end-point devices, data center hosted servers, multi-Cloud services as well as virtualized applications, and storage systems. Enterprise Computing Engineering services include modern application technology including containerized solutions with orchestrated workflow that function both on customer premise, and via remote Cloud services. Network infrastructure engineering services are comprised of core infrastructure, voice and video engineering, field engineering, application management and development for networks, network analytics, firewalls, network access controls and bandwidth service delivery. This is a fast paced, challenging, and career rewarding experience to provide solutions on one of the most complex and high profile programs within the government. This position is located in the Dulles, VA area.
Key Responsibilities:
Required Qualifications:
Desired Qualifications:
The Swift Groups is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
Key Responsibilities:
- Document the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation for various Assessment and Authorization (A&A) efforts
- Document and obtain a general understanding of the architecture being developed or that was developed for each project in order to write the Systems Security Plans (SSP)/CONOPS in the Greenlight application.
- Gather the information by working with various team members in order to write various additional A&A related documents such as Contingency Plan (CP), General User Guide (GUG), Privileged User Guide (PUG), Standard Operating Procedures (SOP's), etc.
- Support Accreditation and Authorization (A&A) reviews by ISSO/M, as well as the Security Controls Assessor (SCA)
- Document the Plans of Actions and Milestones (POA&Ms) implementation responses or mitigations, as well as provide all required artifacts (i.e. evidence gathering from the teams)
- Coordinating with various contractor and staff personnel to obtain the A&A content, as well as working with various customer security organizations to navigate the customer's A&A process in order to achieve Authority to Develop (ATD), Interim Authority to Operation (IATT), as well as Authority to Operate (ATO).
- Keep track of where each of the various A&A projects are within the customer's A&A process in order to know when it's time to re-submit for accreditation or an accreditation extension.
Required Qualifications:
- 11+ years of relevant work experience.
- Possess multi-tasking skills, as well as be a good communicator/facilitator. Comfortable at all levels from developer to senior staff.
- Knowledge of the complex network environments involving shared networks and multiple security enclaves.
- Possess the ability to bridge the technical implementation (i.e. developer talk), into commonly understood security words. Often this is a skillset and is not an actual language, but frequently translation or a basic understand needs to be conveyed by the ISSE when speaking with others or in writing the documentation in order to ensure it's easy to understand.
- Proven experience with A&A, RMF, ICD 503 Security Accreditation and ATO.
- BA/BS Degree or five additional years' experience in lieu of a degree
- US Citizenship and an active TS/SCI with Polygraph security clearance required
Desired Qualifications:
- Previous ISSE experience directly supporting the customer.
- Previous ISSO experience directly supporting the customer is also helpful.
- Various security tools and reports such as Greenlight, RoadRunner, Rapid 7, WebInspect, App Detective, and Splunk
- Public, private and hybrid Cloud experience (AWS, Microsoft Azure, etc.)
- Virtualization experience (VDI & VMWare)
The Swift Groups is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.