Cybersecurity Engineer (Proposal)
United States
Full Time
6 hours ago
No H1B
Key skills
Risk Management Framework (RMF)NIST SP 800-53DoD cybersecurity experienceCloud environmentsIndustrial Control Systems (ICS)Operational Technology (OT)CSSP Analyst certificationAuthorization reviewsCybersecurity policiesLeadershipRisk Management
About this role
Horizon Industries Limited is a company providing full-cycle IT consulting and management support. They are seeking a Cybersecurity Assessment and Authorization Subject Matter Expert (SME) to ensure compliance with DoD cybersecurity policies and support the authorization of information systems.
Responsibilities:
- Serve as a senior cybersecurity authority responsible for supporting the authorization of information systems and ensuring compliance with Department of Defense (DoD) cybersecurity policies and procedures
- Perform and support the DoD cybersecurity authorization process, either as the system authorizing expert or as a subject matter expert for systems undergoing authorization
- Evaluate vulnerabilities and determine the appropriate severity value for identified security control deficiencies
- Assess potential impacts on system authorization status and provide recommendations for remediation
- Brief senior leadership on the progress, risks, and outcomes of systems undergoing the Risk Management Framework (RMF) authorization process
Requirements:
- Minimum five (5) years of experience supporting Risk Management Framework (RMF) and NIST Assessment and Authorization (A&A) processes
- Demonstrated DoD cybersecurity experience
- Experience assessing security controls and conducting authorization reviews for large, complex organizations
- Strong understanding of DoD cybersecurity authorization policies, procedures, and implementation processes
- Experience supporting the DoD RMF authorization lifecycle
- Knowledge of cybersecurity considerations related to emerging technologies, including: Cloud environments, Industrial Control Systems (ICS), Warehouse Execution Systems, Operational Technology (OT) infrastructures
- Must possess an active DoD Secret Clearance
- Must hold IT-II Non-Critical Sensitive security clearance or Tier 3 (T3) at the time of proposal submission
- Active DoD Top Secret Clearance
- IT-I Critical Sensitive security clearance or Tier 5 (T5) at the time of proposal submission
- Personnel assigned as DLA CERT Analysts must maintain a CSSP Analyst certification