Security Engineer with Security Clearance, Source Moon Consulting, LLC, Washington, DC
Source Moon Consulting, LLC -
Washington, DC,
US
Security Engineer with Security Clearance
Date Posted: 2024-06-04
Job description
Description: ECS is seeking a passionate Security Engineer with strong project management experience to support a rapidly growing Data Analytics and Business Intelligence platform focused on providing data solutions that empower our Federal customers. As a Security Engineer, you will ensure that our data systems are protected and work with the technical team to implement hardening controls to protect data and re-mediate application vulnerabilities. The ideal candidate will bring a unique blend of deep technical knowledge in security, with a strong background in Linux systems administration, as well as exceptional project management skills. In this role, you will be responsible for leading and coordinating a broad array of security workstreams, helping to ensure the seamless integration of security practices into all aspects of our infrastructure and operations. Responsibilities include: Implement risk management programs for our federal clients by utilizing NIST, RMF, and FISMA compliance frameworks.
Enhance cyber awareness with clients and project teams.
Prepare and guide systems through the process of obtaining Authorization to Operate (ATO) approvals.
Work alongside federal clients to help them mitigate risk with the use of continuous monitoring and incident response.
Establish security controls to ensure protection of client systems.
Advise application team on Security/Compliance standards and guidelines.
Provide support for Risk Management Framework (RMF), Information Assurance (IA), Assessment & Authorization (A&A), and data privacy assessment services, including preparation of accreditation documentation, system remediation, required patching, and the development of security penetration test plans and the security control implementation plan.
Support planning and coordination of ISVM compliance patching on all system assets.
Support system ISSOs with STIGs deviation/non-compliance and submissions of POA&Ms for remediation actions.
Manage timelines, documentation, and stakeholder expectations for various cybersecurity projects. Required Skills
Must be a US Citizen
Must be able to obtain a Public Trust Clearance
CISSP certification
Proven experience in cybersecurity and IT project management
Proven experience in Linux systems administration
5+ years of experience with data management
5+ years of experience with providing Risk Management Framework (RMF), Information Assurance (IA), Assessment & Authorization (A&A) services and data privacy assessment services, including preparation of accreditation documentation, system remediation, required patching, and test plans and the security control implementation plan
Experience working with cyber security tools
Experience with cyber awareness (e.g., phishing emails, cyber trainings)
Excellent communication, interpersonal, and leadership skills
Desired Skills
Experience with working in cloud environments such as AWS/Azure
Cloud security (AWS/Azure) certifications
Master's degree Prior professional services or federal consulting experience; experience supporting DHS preferred
Experience with the Atlassian suite (Jira/Confluence) Familiarity with AI/ML concepts, workflows, and potential security threats
Project management certifications (e.g., CAPM, PMP)
Enhance cyber awareness with clients and project teams.
Prepare and guide systems through the process of obtaining Authorization to Operate (ATO) approvals.
Work alongside federal clients to help them mitigate risk with the use of continuous monitoring and incident response.
Establish security controls to ensure protection of client systems.
Advise application team on Security/Compliance standards and guidelines.
Provide support for Risk Management Framework (RMF), Information Assurance (IA), Assessment & Authorization (A&A), and data privacy assessment services, including preparation of accreditation documentation, system remediation, required patching, and the development of security penetration test plans and the security control implementation plan.
Support planning and coordination of ISVM compliance patching on all system assets.
Support system ISSOs with STIGs deviation/non-compliance and submissions of POA&Ms for remediation actions.
Manage timelines, documentation, and stakeholder expectations for various cybersecurity projects. Required Skills
Must be a US Citizen
Must be able to obtain a Public Trust Clearance
CISSP certification
Proven experience in cybersecurity and IT project management
Proven experience in Linux systems administration
5+ years of experience with data management
5+ years of experience with providing Risk Management Framework (RMF), Information Assurance (IA), Assessment & Authorization (A&A) services and data privacy assessment services, including preparation of accreditation documentation, system remediation, required patching, and test plans and the security control implementation plan
Experience working with cyber security tools
Experience with cyber awareness (e.g., phishing emails, cyber trainings)
Excellent communication, interpersonal, and leadership skills
Desired Skills
Experience with working in cloud environments such as AWS/Azure
Cloud security (AWS/Azure) certifications
Master's degree Prior professional services or federal consulting experience; experience supporting DHS preferred
Experience with the Atlassian suite (Jira/Confluence) Familiarity with AI/ML concepts, workflows, and potential security threats
Project management certifications (e.g., CAPM, PMP)