Senior IA Engineer
Illinois, United States of America
Full Time
1 week ago
Visa Sponsor
Key skills
CloudCyber SecuritySplunkLeadershipFirewall
About this role
Role Overview
- Provide senior-level cybersecurity and information assurance support for SDDC systems, networks, and cloud-hosted business systems.
- Support RMF activities for the HQ SDDC Installation Campus Network and assigned business systems throughout the authorization lifecycle.
- Develop, review, update, and maintain RMF documentation, security artifacts, control implementation details, authorization packages, and supporting technical documentation.
- Maintain cybersecurity records in eMASS, including authorization status, control posture, assessment results, POA&Ms, system changes, and related artifacts.
- Support continuous monitoring through control assessments, change documentation, risk assessments, impact analysis, and security/privacy posture reporting.
- Lead or support vulnerability management, including analysis of ACAS, Nessus, SCAP, Fortify, STIG, IAVM, and other security findings.
- Develop, maintain, and track POA&Ms for vulnerabilities, RMF findings, STIG findings, IAVMs, and other compliance items.
- Support vulnerability reporting and remediation coordination, including weekly Vulnerability Index reporting and tracking of open Nessus or IAVM findings.
- Monitor STIG compliance, review manual and automated results, validate findings, and map STIG findings to applicable RMF controls.
- Support Cyber Tasking Order compliance, cyber scorecard reporting, audit support, compliance tracking, and cybersecurity posture reporting.
- Review firewall, whitelist, PPSM, and related cybersecurity compliance requests and provide recommendations to Government cybersecurity leadership.
- Support incident response by reviewing suspicious activity, researching potential incidents, and assisting with response, containment, eradication, and recovery.
- Administer, configure, maintain, and report on cybersecurity tools such as HBSS, ACAS, Nessus/Security Center, SolarWinds SEM, McAfee NSM, IDS sensors, Splunk, LogRhythm, or comparable tools.
- Coordinate cybersecurity activities with ISSOs, ISSMs, system administrators, network engineers, program offices, functional managers, and Government stakeholders.
- Maintain accurate compliance records, trackers, reports, technical documentation, and audit artifacts for inspections, assessments, authorizations, and Government reporting.
- Ensure cybersecurity activities comply with applicable DoD, Army, USTRANSCOM, SDDC, RMF, STIG, information assurance, and incident handling requirements.
Requirements
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Information Systems, Engineering, or a related technical discipline.
- Minimum 8 years of experience supporting cybersecurity, information assurance, RMF, vulnerability management, or compliance activities within DoD or federal environments.
- Experience supporting RMF authorization activities, system security documentation, control assessment, continuous monitoring, and ATO package development.
- Experience using eMASS to maintain RMF packages, document controls, track POA&Ms, update authorization information, and support assessment activities.
- Experience reviewing vulnerability scan results and coordinating remediation using tools such as ACAS, Nessus, SCAP, Fortify, or comparable DoD-approved scanning tools.
- Experience supporting DISA STIG compliance, including checklist review, finding validation, remediation coordination, and audit documentation.
- Experience developing, updating, and tracking POA&Ms for RMF controls, vulnerabilities, IAVMs, cyber findings, and compliance gaps.
- Experience supporting incident response, suspicious activity reporting, cyber compliance reporting, cyber scorecards, and coordination with ISSO, ISSM, or cybersecurity leadership.
- Experience coordinating cybersecurity activities across technical teams, Government stakeholders, and program personnel in mission-focused environments.
Tech Stack
- Cloud
- Cyber Security
- Splunk
Benefits
- N/A