ANSER
Cybersecurity Engineer II (Information Technology)
Perform systems engineer and architectural analysis of systems, conduct security impact analysis, and provide recommendations for improving cyber security posture.
Identify, develop, and incorporate artifacts found in RMF authorization package, e.g., system architecture and boundaries, hardware and software inventories, risk assessment reports, POA&Ms, data flows, COOP, PPSM accounting, and other necessary system, network, and application documentation;
Support analysis and help identify solutions to satisfy security controls for commercial, government, and custom developed software and hardware.
Provide guidance on overall cybersecurity best practices influencing decisions, processes, and program objectives to Leadership
Determine operational feasibility of solutions through artifacts review (Information Support Plan (ISP), Systems Engineering Plan (SEP), Test and Evaluation Master Plan (TEMP), Program Protection Plan (PPP) (especially the Cybersecurity Strategy (CSS)) systems analysis, problem definition, requirements, solution development, and proposed solutions.
Assess solutions by reviewing documentation, flowcharts, layouts, diagrams, charts, code comments, and clear code.
Improve operations by conducting functional and systems analyses and recommending changes in policies and procedures.
Audit existing systems and architectures and propose best practices.
Assess automated solutions for application build, test, Quality Assurance (QA), deployments, and monitoring.
Work with the customer to identify and implement security requirements, security best practices, and security controls.
Partner with the customer to develop and implement strategic security initiatives.
Collaborate on critical projects to ensure that security issues are addressed throughout the project life cycle.
Review and critique assessment and authorization (A&A) documentation for compliance with DoD Cybersecurity policy and agency guidance, including DoD 8500 series, CNSS 1253, and NIST special publications.
Bachelor's Degree/Master's Degree in a Cyber-related discipline
7+ years in Systems Engineering with at least 2 recent years in Defense Acquisition Lifecycle Management.
4+ years in Information Assurance with particular experience in Risk Management Framework (RMF)
3+ years in Cyberspace Operations, preferably in Defensive Cyberspace Operations
CISSP, CISM, or other higher-level cybersecurity certification desired
Customer service-focus
GO/FO/SES-level communications in both written and verbal forms
Knowledge and experience identifying, assessing, and documenting compliance against applicable DoD security controls
Systems engineering within the Defense Acquisition System
Familiarity with cybersecurity in weapons systems
Familiarity with cybersecurity in defense critical infrastructure
Familiarity with Security controls assessment and risk evaluation
Familiar with the Defense Acquisition Lifecycle and its “Engineering V” components
Familiar with system-style integration interfaces and testing strategies
*Please note, this position is contingent upon contract award.
In compliance with the Americans with Disabilities Act Amendment Act (ADAAA), if you have a disability and would like to request an accommodation in order to apply for a position with ANSER, please call 703-416-2000 or e-mail Recruiting@anser.org.
ANSER is proud to be an Equal Opportunity Employer. We seek individuals from a broad variety of backgrounds with varying levels of experience who have a desire to do meaningful work. We recruit, employ, train, compensate, and promote regardless of race, color, gender, religion, national origin, ancestry, disability, age, veteran status, sexual orientation, or any other characteristic protected by law.