Motorola SolutionsRemote
Cybersecurity Engineer (FedRAMP)
United States of America
Full Time
3 weeks ago
$90,000 - $100,000 USD
No H1B
Key skills
SDLCCommunicationCollaborationNetwork Security
About this role
Motorola Solutions is a global community focused on enhancing safety through technology. The Cybersecurity Engineer will lead security assessments for client information systems, guiding clients through compliance with FedRAMP, FISMA, and NIST RMF requirements while supporting secure cloud architecture and risk mitigation activities.
Responsibilities:
- Engage directly with clients through verbal communication to perform interviews, lead assessment discussions, and provide expert guidance and solutions
- Utilize expertise in security engineering, secure architecture design, system and network security, authentication protocols, applied cryptography, and application security
- Conduct comprehensive security assessments by analyzing cybersecurity documentation and performing evidence collection, interviews, and testing to evaluate compliance with relevant standards such as FISMA, NIST RMF, and FedRAMP
- Perform system and network vulnerability scanning and analysis using automated and manual techniques with tools such as Nessus, ACAS, DB Protect, WebInspect, NMAP, and DISA STIGs/STIG Viewer
- Perform identification and application of vulnerability remediations, fix procedures, and when necessary mitigation techniques
- Identify, recommend, and validate vulnerability remediation actions, fix procedures, and mitigation strategies
- Lead compliance-related and technical discussions, demonstrating expert understanding of security frameworks, architectures, and control requirements
- Coordinate and guide cross-functional teams, ensuring effective collaboration, delivery, and communication
- Prepare clear, accurate, and original reports, attestations, and customer-facing documentation
- Inform customers of cybersecurity issues and concerns that need to be resolved and explain how compliance to various standards and frameworks is achieved
- Work independently or as part of a client delivery team in a fast-paced, deadline-driven, remote environment
Requirements:
- Bachelor's Degree or 5+ years equivalent experience
- 3+ years of experience in performing and/or participating in FISMA based security Assessment and Authorization (A&A) activities
- Must be a US Citizen and able to obtain an active SECRET Security Clearance
- Strong technical background in security engineering, secure architecture, system and network security, authentication protocols, applied cryptography, and application security
- Expert knowledge of Cloud Computing, FedRAMP, FISMA, NIST/DoD RMF, and NIST SP 800-series publications
- Intermediate experience with testing and assessment tools such as Nessus/ACAS, SCC, DISA STIGs/STIG Viewer, NMAP, and Acunetix
- Self-motivated and able to operate independently or as part of a team
- Ability to author original assessment reports, attestations, and compliance documentation
- Strong verbal communication, organizational, planning, and attention to detail skills
- Successful completion of the FedRAMP Baltimore Cyber Range
- Knowledge of the Software Development Lifecycle (SDLC) as it relates to Information Security and Information Assurance
- Able to travel up to 25% as required for various client engagements
- Must hold one other advanced certification such as CISA, CISM, etc. in accordance with the A2LA R311
- High School diploma, Bachelor's Degree in Computer Science, Engineering, Information Systems, or Technology required
- Must be a U.S. citizen with the ability to obtain a necessary security clearance as required by our government customers
- Legal authorization to work in the U.S. indefinitely is required. Employer work permit sponsorship is not available for this position
- The candidate must have at least one industry certification from the following list: Cisco Certified Network Associate Security (CCNA Security)
- Cisco Certified Network Associate Security (CCNA Security)
- Cisco Certified Network Associate Cyber Security Operations (CCNA Cyber Ops)
- Cybersecurity Analyst (CySA+)
- GIAC Certified Incident Handler (GCIH)
- GIAC Systems and Network Auditor (GSNA)
- GIAC Certified Intrusion Analyst (GCIA)
- Certified Information Systems Auditor (CISA)
- Certified Information System Security Professional or Associate (CISSP or Associate)
- Certified Secure Software Lifecycle Professional (CSSLP)
- Certified Information Systems Security Officer (CISSO)
- CyberSec First Responder (CFR)
- CompTIA Advanced Security Practitioner Continuing Education (CASP+) Continuing Education (CE)
- CompTIA Cloud+ (Cloud+)
- Global Industrial Cyber Security Professional (GICSP)
- Securing Cisco® Networks with Threat Detection Analysis (SCYBER)