Odyssey Systems Consulting Group
Principal Cybersecurity Engineer
Odyssey Systems Consulting Group, Bedford, Massachusetts, us, 01730
Principal Cybersecurity Engineer
Job Locations: US-MA-BedfordID: 2024-5289Category: CybersecurityType: Full TimeHours/Week: 40Location: Hanscom AFBPosition Summary
Odyssey Systems has an exciting opportunity for a
Principal Cybersecurity Engineer
providing support to the Air Force Life Cycle Management Center (AFLCMC/HBD), Theater Battle Control Division. The Theater Battle Control Division manages efforts focused on developing, acquiring, fielding, and sustaining programs that support worldwide communications, Battle Management, Command & Control, Intelligence, Surveillance & Reconnaissance (C2ISR), Tactical Air Control, Air/Ground Surveillance, Time Critical Targeting, Combat Identification, Radar Imagery, Integrated Air/Missile Defense, and Mobile/Fixed C2ISR Performance, Exploitation & Dissemination Facilities. This is a full-time position located at Hanscom Air Force Base in Bedford, Massachusetts.Responsibilities
Duties include, but are not limited to:Assist with development of System Security Management Plans, Program Protection Plans, Security Risk Analyses, OPSEC Plans, Computer Certification and Accreditation, Security Vulnerability and Countermeasures Analyses, Security Concepts of Operations, and other system security engineering-related documents identified in MIL-STD 1785, DoDI 5000.02, Operation of the Adaptive Acquisition Framework, and DoDI 8510.01.Support the system/application Authorization and Accreditation (A&A) effort to include assessing and guiding the quality and completeness of A&A activities, tasks, and resulting artifacts mandated by governing DoD and Air Force policies (i.e., Risk Management Framework (RMF)).Update, monitor, and manage information in systems for the program office.Process and manage system user account requests and process tools.Process and manage system port/protocol and access control list requirements.Process and manage system Public Key Infrastructure (PKI) identification and authorization requirements.Manage the distribution, implementation, remediation, and tracking of system security updates and configurations as required by the DoD.Recommend policies and procedures to ensure information systems reliability and accessibility to prevent and defend against unauthorized access to systems, networks, and data.Conduct risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risk, and protection needs.Promote awareness of security issues among management and ensure sound security principles are reflected in organizations' vision and goals.Conduct systems security evaluations, audits, and reviews.Recommend systems security contingency plans and disaster recovery procedures.Recommend and implement programs to ensure that systems, network, and data users are aware of, understand, and adhere to systems security policies and procedures.Participate in network and systems design to ensure implementation of appropriate systems security policies.Recommend initial or updates to software and configurations to new or existing system security mechanisms.Obtain waivers to mandated security mechanisms/policies which would be detrimental to system performance and impact the system's mission.Facilitate the gathering, analysis, and preservation of evidence used in the prosecution of computer incidents.Provide leadership assistance in the analysis of the design, development, integration, implementation, and testing of cybersecurity requirements.Develop risk-based strategies to address identified gaps.Review, analyze, and assess implementations of cybersecurity (i.e., RMF security controls) throughout the open systems architecture and associated services, derived requirements specifications, design documents & design implementation.Collaborate with stakeholders (Government and commercial) to ensure the system is approved by all Authorizing Officials via the RMF A&A process.Provide technical advice in the area of systems security across all systems and supports.Develop recommendations for the Government regarding how well designs satisfy current requirements and business goals.Maintain databases that reflect receipt, storage, inventory, and disposition of classified information to include data entry, updates, and generation of reports.Support Government program office in audits of Government classified holdings to ensure proper accountability.Maintain databases of classified visits and clearance levels.Perform inspection, inventory, logging, storage, documentation, transmittal, and internal distribution of classified information received.Evaluate Contractor classified data submittals for compliance with the appropriate System Security Classification Guide (SSCG).Provide security inspection and protection to areas where classified information is being stored, and develop and establish security procedures and policies IAW DOD, USAF, AFMC, and local directives.Develop training and provide security awareness and other security education programs.Review and verify personnel qualifications for access to special access programs.Develop, implement, and maintain a communications security program.Assess program disclosure issues and provide FMS case management support.Assist and advise FMS program office management and leadership in interfacing with FMS customers and all USG organizations, including but not limited to SAF/IA, Air Force Security Assistance Center (AFSAC), Air Force Security Assistance Training (AFSAT) squadron, Defense Finance and Accounting Services (DFAS).Support execution of all aspects of acquisition program security throughout a program's lifecycle.Assist with the development of sound security practices and policies regarding acquisition, physical, personnel, and documentation security.Update security classification guides.Prepare acquisition security-related sections of acquisition program documentation.Review Contractor deliverables to ensure compliance with CDRLs.Plan and implement security-related surveys, assessments, and studies.Evaluate program security information and hardware throughout the program life cycle, to include studies, analyses, plans, procedures, production, test plans/results, transportation, technology, and storage of end items.Provide security support to source selections.Qualifications
Minimum Required Qualifications:Citizenship:
Must be a US citizenClearance:
Must have and be able to maintain a Top Secret level clearanceEducation:
BS/BA DegreeYears' experience:
15 years of experience in the respective technical/professional discipline being performed, 10 of which must be in the DoDUnderstanding of cybersecurity in DoD cloud infrastructureUnderstanding of Agile methods, including CI/CD, DevSecOps, and DevOpsPossess the ability to effectively communicate in both written and verbal forms on highly technical topicsAdditional Information:Location:
Hanscom AFBTravel:
Travel may be required per the customer's discretion.#LI-KM1Company Overview
Odyssey Systems Consulting Group
is an innovative small business committed to providing world-class technical, management, and training support services to government and public sector clients. We focus on people, processes, and performance to deliver superior results. Since our inception in 1997, our commitment to mission success and customer satisfaction has been recognized with exponential growth and exceptional past performance ratings. We accept challenging assignments and drive projects from the planning stages, through implementation, and into operations and support.Please note:
Final compensation for this position will be determined by various factors such as the Federal Government contract labor categories and contract wage rates, relevant work experience, specific skills and competencies, geographic location, education, and certifications.Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
#J-18808-Ljbffr
Job Locations: US-MA-BedfordID: 2024-5289Category: CybersecurityType: Full TimeHours/Week: 40Location: Hanscom AFBPosition Summary
Odyssey Systems has an exciting opportunity for a
Principal Cybersecurity Engineer
providing support to the Air Force Life Cycle Management Center (AFLCMC/HBD), Theater Battle Control Division. The Theater Battle Control Division manages efforts focused on developing, acquiring, fielding, and sustaining programs that support worldwide communications, Battle Management, Command & Control, Intelligence, Surveillance & Reconnaissance (C2ISR), Tactical Air Control, Air/Ground Surveillance, Time Critical Targeting, Combat Identification, Radar Imagery, Integrated Air/Missile Defense, and Mobile/Fixed C2ISR Performance, Exploitation & Dissemination Facilities. This is a full-time position located at Hanscom Air Force Base in Bedford, Massachusetts.Responsibilities
Duties include, but are not limited to:Assist with development of System Security Management Plans, Program Protection Plans, Security Risk Analyses, OPSEC Plans, Computer Certification and Accreditation, Security Vulnerability and Countermeasures Analyses, Security Concepts of Operations, and other system security engineering-related documents identified in MIL-STD 1785, DoDI 5000.02, Operation of the Adaptive Acquisition Framework, and DoDI 8510.01.Support the system/application Authorization and Accreditation (A&A) effort to include assessing and guiding the quality and completeness of A&A activities, tasks, and resulting artifacts mandated by governing DoD and Air Force policies (i.e., Risk Management Framework (RMF)).Update, monitor, and manage information in systems for the program office.Process and manage system user account requests and process tools.Process and manage system port/protocol and access control list requirements.Process and manage system Public Key Infrastructure (PKI) identification and authorization requirements.Manage the distribution, implementation, remediation, and tracking of system security updates and configurations as required by the DoD.Recommend policies and procedures to ensure information systems reliability and accessibility to prevent and defend against unauthorized access to systems, networks, and data.Conduct risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risk, and protection needs.Promote awareness of security issues among management and ensure sound security principles are reflected in organizations' vision and goals.Conduct systems security evaluations, audits, and reviews.Recommend systems security contingency plans and disaster recovery procedures.Recommend and implement programs to ensure that systems, network, and data users are aware of, understand, and adhere to systems security policies and procedures.Participate in network and systems design to ensure implementation of appropriate systems security policies.Recommend initial or updates to software and configurations to new or existing system security mechanisms.Obtain waivers to mandated security mechanisms/policies which would be detrimental to system performance and impact the system's mission.Facilitate the gathering, analysis, and preservation of evidence used in the prosecution of computer incidents.Provide leadership assistance in the analysis of the design, development, integration, implementation, and testing of cybersecurity requirements.Develop risk-based strategies to address identified gaps.Review, analyze, and assess implementations of cybersecurity (i.e., RMF security controls) throughout the open systems architecture and associated services, derived requirements specifications, design documents & design implementation.Collaborate with stakeholders (Government and commercial) to ensure the system is approved by all Authorizing Officials via the RMF A&A process.Provide technical advice in the area of systems security across all systems and supports.Develop recommendations for the Government regarding how well designs satisfy current requirements and business goals.Maintain databases that reflect receipt, storage, inventory, and disposition of classified information to include data entry, updates, and generation of reports.Support Government program office in audits of Government classified holdings to ensure proper accountability.Maintain databases of classified visits and clearance levels.Perform inspection, inventory, logging, storage, documentation, transmittal, and internal distribution of classified information received.Evaluate Contractor classified data submittals for compliance with the appropriate System Security Classification Guide (SSCG).Provide security inspection and protection to areas where classified information is being stored, and develop and establish security procedures and policies IAW DOD, USAF, AFMC, and local directives.Develop training and provide security awareness and other security education programs.Review and verify personnel qualifications for access to special access programs.Develop, implement, and maintain a communications security program.Assess program disclosure issues and provide FMS case management support.Assist and advise FMS program office management and leadership in interfacing with FMS customers and all USG organizations, including but not limited to SAF/IA, Air Force Security Assistance Center (AFSAC), Air Force Security Assistance Training (AFSAT) squadron, Defense Finance and Accounting Services (DFAS).Support execution of all aspects of acquisition program security throughout a program's lifecycle.Assist with the development of sound security practices and policies regarding acquisition, physical, personnel, and documentation security.Update security classification guides.Prepare acquisition security-related sections of acquisition program documentation.Review Contractor deliverables to ensure compliance with CDRLs.Plan and implement security-related surveys, assessments, and studies.Evaluate program security information and hardware throughout the program life cycle, to include studies, analyses, plans, procedures, production, test plans/results, transportation, technology, and storage of end items.Provide security support to source selections.Qualifications
Minimum Required Qualifications:Citizenship:
Must be a US citizenClearance:
Must have and be able to maintain a Top Secret level clearanceEducation:
BS/BA DegreeYears' experience:
15 years of experience in the respective technical/professional discipline being performed, 10 of which must be in the DoDUnderstanding of cybersecurity in DoD cloud infrastructureUnderstanding of Agile methods, including CI/CD, DevSecOps, and DevOpsPossess the ability to effectively communicate in both written and verbal forms on highly technical topicsAdditional Information:Location:
Hanscom AFBTravel:
Travel may be required per the customer's discretion.#LI-KM1Company Overview
Odyssey Systems Consulting Group
is an innovative small business committed to providing world-class technical, management, and training support services to government and public sector clients. We focus on people, processes, and performance to deliver superior results. Since our inception in 1997, our commitment to mission success and customer satisfaction has been recognized with exponential growth and exceptional past performance ratings. We accept challenging assignments and drive projects from the planning stages, through implementation, and into operations and support.Please note:
Final compensation for this position will be determined by various factors such as the Federal Government contract labor categories and contract wage rates, relevant work experience, specific skills and competencies, geographic location, education, and certifications.Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
#J-18808-Ljbffr