By Light Professional IT Services

Returning Candidate?

Cyber Security Engineer

Cyber Security Engineer

ID 
2018-2272
# of Openings 
1
Job Locations 
US-UT-Salt Lake City
US-Remote Work
Posted Date 
3/26/2018
Category 
Information Technology
Clearance 
High-BI

More information about this job

Overview

By Light is seeking a Cyber Security Engineer to join our team. The position will work with a team that is developing and deploying a mission critical IT system for the Department of Veterans Affairs. Candidate will provision, administer, and maintain test environments. This role can work remotely from a home office.

 

By Light is an IT products and services firm specializing in software development, satellite/terrestrial communications, cyber security, and network engineering/design. Headquartered in Arlington, VA, we provide support worldwide to DOD, Federal Civilian, and Health IT customers.

Responsibilities

The candidate will be responsible for auditing against NIST 800-53 and VA 6500 requirements in the environment and working with the system administrators and developers to ensure system is secure; routine tasks such as vulnerability scans, monitoring compliance with organizational security policies/procedures; user permission audits, security risk research, reviewing documentation, etc.; and reporting progress and status.

 

  • Support vulnerability management.
  • Use of a Governance Risk Control tool for risk management.
  • Allocation of audit and security against NIST 800-53, VA 6500, and HIPPA.
  • Review system weakness and audit findings and support mitigations.
  • Review and document Nessus, Fortify, Database, and AppScan scans.
  • Respond to Veterans Administration program leads to provide guidance on priority security requirements affecting development and acquisition programs.
  • NIST SP 800-53 and VA 6500 requirements analysis.

Required Experience/Qualifications

  • 4+ years of experience in managing security programs for a variety of IT products, systems and networks both small and large and complex. 
  • 2+ years NIST 800-53 and Assessment and Authorization experience required.
  • Ability to ensure that records are maintained, security updates are promulgated, and staff are properly briefed. 
  • Experience in coordinating with organizational security teams to ensure program consistency and compliance with all security requirements. 
  • Experience reviewing security related networking, authentication, and application security issues.
  • Must have knowledge on a number of security protocols and processes.
  • Experience making recommendations for security controls.
  • Knowledge of organizational and agency level security requirements and ensures that systems and personnel comply with these standards.
  • Excellent verbal and written communication skills.
  • Ability to effectively communicate security-related concepts to a broad range of technical and non-technical staff.
  • Team-oriented and can work independently.
  • Strong conceptual and analytical skills.

Preferred Experience/Qualifications

  • Veterans Affairs experience preferred.
  • CISSP or similar certs preferred.
  • Project management experience a plus.
  • Use of VA's RiskVision tool a very big plus.

Special Requirements/Security Clearance

  • Occasional travel may be required.
  • Ability to successfully pass VA background investigation.

 

An Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

#CJ