Criterion Systems
Cyber Security System Eng (ISSE); Expert
Criterion Systems, Herndon, Virginia, United States, 22070
Overview
At Criterion Systems, we developed a different kind of business—a company whose real value is a reputation for excellence built upon the collective skills, talents, perspectives, and backgrounds of its people. By accepting a position with Criterion Systems, you will join a group of professionals with a collaborative mindset where we share ideas and foster professional development to accomplish our goals. In addition to our great culture, we also offer competitive compensation and benefit packages, company-sponsored team building events, and advancement opportunities. To find out more about how Criterion can help you take your career to the next level please visit our website: www.criterion-sys.com . Criterion Systems is a Military/Veteran Friendly Company therefore we encourage Veterans to apply.
We are seeking a mission-focusedCyber Security Systems Engineer - Expert to support and contribute to our government customer’s success in Herndon, Virginia!
Responsibilities
This opportunity involves supporting the customer’s Division-level A&A projects, which span multiple branches. The projects are at various stages within the organization, depending on whether the focus is on initial development and accreditation or long-term operations and maintenance (O&M) support, as handled by different teams.
Required Experience, Education, Skills & Technologies:
Must have an active TS/SCI with poly security clearance.
Bachelor's or Master’s Degree are preferred in one or more discipline, but can be waived if previous direct ISSE support to this customer’s agency.
Minimum of 11 years' experience.
Work onsite at a customer or government facility.
Possess multi-tasking skills, as well as be a good communicator/facilitator.
Comfortable at all levels from developer to senior staff.
Knowledge of the complex network environments involving shared networks and multiple security enclaves.
Possess the ability to bridge the technical implementation (i.e. developer talk), into commonly understood security words.
Often this is a skillset and is not an actual language, but frequently translation or a basic understand needs to be conveyed by the ISSE when speaking with others or in writing the documentation in order to ensure it’s easy to understand.
Document the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation for various Assessment and Authorization (A&A) efforts.
Document and obtain a general understanding of the architecture being developed or that was developed for each project in order to write the Systems Security Plans (SSP)/CONOPS in the Xacta application.
Gather the information by working with various team members in order to write various additional A&A related documents such as Contingency Plan (CP), General User Guide (GUG), Privileged User Guide (PUG), Standard Operating Procedures (SOP’s), etc.
Support Accreditation and Authorization (A&A) reviews by ISSO/M, as well as the Security Controls Assessor (SCA).
Document the Plans of Actions and Milestones (POA&Ms) implementation responses or mitigations, as well as provide all required artifacts (i.e. evidence gathering from the teams).
Coordinating with various contractor and staff personnel to obtain the A&A content, as well as working with various customer organizations to navigate the customer’s A&A process in order to achieve Authority to Develop (ATD), Interim Authority to Operation (IATT), as well as Authority to Operate (ATO).
Keep track of where each of the various A&A projects are within the customer’s A&A process in order to know when it’s time to re-submit for accreditation or an accreditation extension.
Qualifications
Preferred Experience, Education, Skills & Technologies:
Previous ISSE and/or ISSO experience directly supporting the customer.
Experience with various security tools and reports such as Xacta, RoadRunner, Rapid 7, WebInspect, App Detective, and Splunk
Experience with public, private and hybrid Cloud experience (AWS, Microsoft Azure, etc.).
Virtualization experience (VDI & VMWare).
Basic knowledge is helpful, but not required for the following general topics: Cloud security control implementation, PKI implementation, STIG compliance and vulnerability management, and Security Development and Operations (SecDevOps).
CISSP, or GSLC
AWS Certified Security Specialty
Basic Excel and Microsoft Office365
Security Clearance Level
Top Secret/SCI with Polygraph
Work Schedule
Full-time on-site
Benefits Offered
Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Tuition/Training Assistance, Parental Leave, Paid Time Off, and Holidays.
Criterion Systems, LLC and its subsidiaries are committed to equal employment opportunity and non-discrimination at all levels of our organization. We believe in treating all applicants and employees fairly and make employment decisions without regard to any individual’s protected status: race, ethnicity, color, national origin, ancestry, religion, creed, sex/gender, gender identity/gender expression, sexual orientation, physical and mental disability, marital/parental status, pregnancy (including childbirth, lactation, and related medical conditions), age, genetic information (including characteristics and testing), military and veteran status, or any other characteristic protected by law. For our complete EEO/AA and Pay Transparency statement, please visit https://careers-criterion-sys.icims.com/.
Job LocationsUS-VA-Herndon
ID 2024-3327
Category Information Technology
Type Expert
At Criterion Systems, we developed a different kind of business—a company whose real value is a reputation for excellence built upon the collective skills, talents, perspectives, and backgrounds of its people. By accepting a position with Criterion Systems, you will join a group of professionals with a collaborative mindset where we share ideas and foster professional development to accomplish our goals. In addition to our great culture, we also offer competitive compensation and benefit packages, company-sponsored team building events, and advancement opportunities. To find out more about how Criterion can help you take your career to the next level please visit our website: www.criterion-sys.com . Criterion Systems is a Military/Veteran Friendly Company therefore we encourage Veterans to apply.
We are seeking a mission-focusedCyber Security Systems Engineer - Expert to support and contribute to our government customer’s success in Herndon, Virginia!
Responsibilities
This opportunity involves supporting the customer’s Division-level A&A projects, which span multiple branches. The projects are at various stages within the organization, depending on whether the focus is on initial development and accreditation or long-term operations and maintenance (O&M) support, as handled by different teams.
Required Experience, Education, Skills & Technologies:
Must have an active TS/SCI with poly security clearance.
Bachelor's or Master’s Degree are preferred in one or more discipline, but can be waived if previous direct ISSE support to this customer’s agency.
Minimum of 11 years' experience.
Work onsite at a customer or government facility.
Possess multi-tasking skills, as well as be a good communicator/facilitator.
Comfortable at all levels from developer to senior staff.
Knowledge of the complex network environments involving shared networks and multiple security enclaves.
Possess the ability to bridge the technical implementation (i.e. developer talk), into commonly understood security words.
Often this is a skillset and is not an actual language, but frequently translation or a basic understand needs to be conveyed by the ISSE when speaking with others or in writing the documentation in order to ensure it’s easy to understand.
Document the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation for various Assessment and Authorization (A&A) efforts.
Document and obtain a general understanding of the architecture being developed or that was developed for each project in order to write the Systems Security Plans (SSP)/CONOPS in the Xacta application.
Gather the information by working with various team members in order to write various additional A&A related documents such as Contingency Plan (CP), General User Guide (GUG), Privileged User Guide (PUG), Standard Operating Procedures (SOP’s), etc.
Support Accreditation and Authorization (A&A) reviews by ISSO/M, as well as the Security Controls Assessor (SCA).
Document the Plans of Actions and Milestones (POA&Ms) implementation responses or mitigations, as well as provide all required artifacts (i.e. evidence gathering from the teams).
Coordinating with various contractor and staff personnel to obtain the A&A content, as well as working with various customer organizations to navigate the customer’s A&A process in order to achieve Authority to Develop (ATD), Interim Authority to Operation (IATT), as well as Authority to Operate (ATO).
Keep track of where each of the various A&A projects are within the customer’s A&A process in order to know when it’s time to re-submit for accreditation or an accreditation extension.
Qualifications
Preferred Experience, Education, Skills & Technologies:
Previous ISSE and/or ISSO experience directly supporting the customer.
Experience with various security tools and reports such as Xacta, RoadRunner, Rapid 7, WebInspect, App Detective, and Splunk
Experience with public, private and hybrid Cloud experience (AWS, Microsoft Azure, etc.).
Virtualization experience (VDI & VMWare).
Basic knowledge is helpful, but not required for the following general topics: Cloud security control implementation, PKI implementation, STIG compliance and vulnerability management, and Security Development and Operations (SecDevOps).
CISSP, or GSLC
AWS Certified Security Specialty
Basic Excel and Microsoft Office365
Security Clearance Level
Top Secret/SCI with Polygraph
Work Schedule
Full-time on-site
Benefits Offered
Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Tuition/Training Assistance, Parental Leave, Paid Time Off, and Holidays.
Criterion Systems, LLC and its subsidiaries are committed to equal employment opportunity and non-discrimination at all levels of our organization. We believe in treating all applicants and employees fairly and make employment decisions without regard to any individual’s protected status: race, ethnicity, color, national origin, ancestry, religion, creed, sex/gender, gender identity/gender expression, sexual orientation, physical and mental disability, marital/parental status, pregnancy (including childbirth, lactation, and related medical conditions), age, genetic information (including characteristics and testing), military and veteran status, or any other characteristic protected by law. For our complete EEO/AA and Pay Transparency statement, please visit https://careers-criterion-sys.icims.com/.
Job LocationsUS-VA-Herndon
ID 2024-3327
Category Information Technology
Type Expert