• Sr. Cybersecurity Engineer (NQV)

    Job Locations US-CA-San Diego
    Job ID 2018-1032
    Category
    Cybersecurity
  • Overview

    The Sr. Cybersecurity Engineer (NQV) oversees, evaluates, and supports the documentation, validation, assessment, and authorization processes necessary to assure that existing and new information technology (IT) systems meet the organization's cybersecurity and risk requirements in support of Certification and Accreditation (C&A) and/or Assessment and Authorization (A&A).

    Responsibilities

    • Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the security controls (as defined in NIST 800-37).
    • Maintain and or develop information systems assurance and C&A /A&A accreditation documentation.
    • Ensure the appropriate treatment of risk, compliance, and assurance from internal and external perspectives. 
    • Draft statements of preliminary or residual security risks for system operation.
    • Review security requirements, products, configurations and cybersecurity architectures for compliance with DoD policies.
    • Develop and execute C&A / A&A schedules and documentation.

    Qualifications

    • A current active Top Secret clearance is required to be considered for this role.
    • Ten (10) years of IA/cybersecurity experience with Defense Information Assurance Certification and Accreditation Process (DIACAP) and/or Risk Management Framework (RMF).
    • Strong knowledge of Navy Afloat/Shore Platform.
    • Strong knowledge of Navy Risk Management Framework Process Guide.
    • Knowledge of DoD 8500 Series Policies (DoDD 8500.1, DoDI 8500.2, DoD 8500.01, DoDI 8510.01 (DIACAP and RMF), CNSSI 4009, NIST SP 800-53 Security Control Catalog, CNSS 1253, CNSSI 1253, and NIST Special Publication (SP) 800-53.
    • Must be familiar with eMASS and C&A/A&A package entry.
    • Knowledge of computer networking concepts and protocols, and network security methodologies.
    • Familiarity with Application Security Secure Code Development.
    • Experience in assessing a network and/or systems using cybersecurity automated tools such as Nessus, SCAP, and any applicable Security Technical Implementation Guides (STIGs) in accordance with DISA requirements.
    • ACAS, VRAM, HBSS and YUM/WSUS familiarity.
    • Must be able to communicate with personnel and clients effectively.

    Education Requirements:

    • Bachelor's Degree in Cybersecurity or a related discipline. Four (4) additional years of experience in cyber security and IA may be substituted in lieu of degree.
    • IAM Level III compliance with DoD INST 8570.01-M or replacement instruction, and certification IAW SECNAVINST 5239.20A (may be completed within six (6) months of hire date).
    • Certified Information Systems Security Professional (CISSP) certification.
    • Navy Qualified Validator (NQV) Level II or III, or Fully Qualified Navy Validator (FQNV).
    • Additional certifications may be required depending on contract requirements:
      • CompTIA Security+ certification.
      • CompTIA Linux+ certification.
      • CCNA certification.
      • VMWare certification.
      • Additional OS certifications (Windows, Cisco, etc.)

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed