Campus Pride Jobs

Sigma Defense is seeking a Mid-Level Cybersecurity Engineer to perform cybersecurity engineering and configuration management activities to support the maintenance of secure IT platform baselines as well as the lab environment and IT infrastructure said baseline is maintained at.

The candidate should be knowledgeable in submitting and sustaining security packages for information systems, and ideally familiar with Navy RMF processes. Additionally, the candidate should be well-versed in systems and network security engineering and continuous monitoring activities and enjoys working in an on-site secure environment.

Equal Opportunity Employer/Veterans/Disabled: Sigma Defense Systems is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

Requirements

• 6-8 years of relevant experience.

• Experience in developing and implementing security into infrastructure, platforms, and software across key tasks and high impact assignments.

• Experience applying CNSSI 1253 and NIST SP 800 series standards.

• Experience applying DISA Security Technical Implementation Guides (STIG) and Security Requirement Guides (SRG) standards, particularly Cloud Computing SRG.

• Experience with web-based Assessment and Authorization platforms (e.g., eMASS).

• Understanding of cybersecurity threats and countermeasures.

Computer Programs/Software Experience:

• SCAP scanners

• ACAS

• Visio

• Wireshark

Education Requirements:

• Bachelor's degree from an accredited college or university in Cybersecurity, Computer Science, Information Management, or related field of study.

Personnel Clearance Level:

• Candidate must possess an active, DoD issued Top Secret security clearance or higher. A TS/SCI level clearance is required for the position.

• A TS/SCI clearance will be sponsored for the right candidate.

Mandatory Certifications:

• CySA+ (or equivalent DoDI 8140)

Essential Job Responsibilities (not all-inclusive)

• Provide cybersecurity expertise for system security engineering and assessment and authorization activities.

• Work with other cybersecurity personnel and system engineers to support test lab modernization project, by assessing new capabilities and determine the appropriate RMF assessment and authorization approach for them; or updates/changes to the existing authorization package.

• Perform system administration tasks on Windows servers, MS SharePoint and lab wiki.

• Manage and maintain licenses.

• Support continuous monitoring using established vulnerability management processes outlined in NIST 800-53 series and CNSSI 1253.

• Run monthly ACAS scans to identify vulnerabilities that require remediation or mitigation.

• Identify and implement required configuration updates based on the latest DISA Security Technical Implementation Guidelines (STIG) on a quarterly basis using SCAP tools as well as manual review processes.

• Develop and maintain Plans of Actions and Milestones (POA&Ms) to mitigate findings from the vulnerability scans and STIG review.

• Provide updated security artifacts based on changes to the system baseline.

Salary Range: $110,000 - $125,000 annually.

Benefits

• Dental and Vision Insurance

• Medical Insurance to Include HSA, FSA, and DFSA Plans

• Life and AD&D coverage

• Employee Assistance Program (EAP)

• 401(k) Plan with Company Matching Contributions

• 160 Hours of Paid Time Off (PTO) with Carry-Over up to 240 hours

• 12 (Floating) Holidays

• Educational Assistance

• Highly Competitive Salary