IT Cyber-Security Engineer
US-OH-Wright-Patterson Air Force Base
Credence Management Solutions, LLC (Credence) is seeking a senior-level IT Cyber-Security Engineer to support Air Force Life Cycle Management Center.
Perform Information Technology Cybersecurity activities and functions.
Conduct System Security, Cybersecurity, and Anti-Tamper analysis, testing, verification, and documentation.
Participate in Government, prime contractor, and subcontractor Cybersecurity/System Security reviews, meetings, and working groups as applicable for all system security issues.
Analyze prime and subcontractor data to develop and provide system security documentation for Government approval, including, but not limited to, classification of information, data and equipment, specific security procedures, handling and transfer of classified materials, and security boundary parameters.
Verify cybersecurity controls and testing and that it complies with system procurements as they relate to RMF (DoDI 8510.01).
Conduct engineering and technical analysis in preparing cybersecurity vulnerability and risk assessments. The cybersecurity vulnerability and risk assessments shall provide information necessary to recommend approval by the Authorizing Official for an Authorization To Operate (ATO) for the assigned security systems.
Identify component and subsystem vulnerabilities and recommend potential solutions and safeguards, including system design interoperability.
Develop recommendations for inputs and updates to System Security documentation and Military Type Certificate documentation from a system security supportability aspect.
Provide analyses of ATO packages and System Security Plans. The analyses shall provide recommendations, risk areas, and gap analysis necessary to increase the supportability, quality, and availability of the assigned security systems.
Develop and continually update applicable program documentation based on DoDI 8510.01 and National Institute of Standards and Technology 800- 53.
Participate in the development of recommendations on Cyber Resiliency strategies, processes, and documentation.
Conduct cybersecurity data gathering and site surveys of operational and maintenance activities and records in support of system security plans and ATO conditions.
Master’s degree and 10 years of experience required
Bachelor’s degree and 8 additional years of experience may be substituted in lieu of Master’s degree.
Must possess a Security+ certification.
Must be able to present results in cybersecurity documentation that shall be used for System Acquisition Planning and Management major milestones, including Cybersecurity Plan of Action and Milestones (POA&M) leading to Cybersecurity Roadmaps.
Must meet individual Cybersecurity certification requirements in compliance with DoD Directive 8570.01 and DoD 8570.01-M.
Possess experience in Cybersecurity Vulnerability Assessment procedures, tools, and techniques that identify system cybersecurity vulnerabilities.
Possess experience in Cybersecurity Risk Assessment procedures, tools, and techniques that identify system cybersecurity operational risks.
Possess experience in Supply Chain Risk Management guidance and policies regarding cybersecurity program sensitivities.
Must have security management experience in a program acquisition life cycle environment.
Have a working knowledge of software assurance plans and their implementation regarding development processes, operational systems, and development environments.
Possess experience with DoD’s Risk Management Framework (RMF) applications in cybersecurity, security solutions, and managing DoD information systems security
Need help finding the right job?
We can recommend jobs specifically for you!
Click here to get started.
Credence Management Solutions, LLC is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, or national origin, age, or disability.