Cybersecurity Engineer

McBride has an exciting opportunity for a Cybersecurity Engineer/ISSO to support the C3C / Kessel Run (KR) Division, which is within the USAF C3BM Directorate. This role will focus on cybersecurity and serves as the Program Office’s information security professional responsible for conducting information system security engineering activities and ensures security is integrated into the AOC WS security architecture IAW government requirements. Provide cybersecurity technical guidance in the following Cyber principles to include, Authentication, Non-Repudiation, Least Privilege, Defense in Depth, Risk Management, Network Security, etc. to support to the AOC WS ISSM.

This is a full-time position located at Langley AFB.

Responsibilities

Duties includ e, but not limited to:

• Serve as a technical point of contact and subject matter expert for ISSO-related matters.
  
• Complete security assessments on the AOC WS development suites, prepare the final security assessment reports, which includes technical recommendations for both STIGs and ACAS findings.
  
• Provide technical input, recommendations, and assistance with the implementation of cyber security approaches, methods and solutions that incorporate and maintain compliance to requirements resulting from laws, regulations, and other DoD and AF guidance.
  
• Assess proposed changes to information systems, their environment of operation, and mission needs that could affect system authorization.
  
• Provide purposeful security architecting, design, development, and configuration of information systems to the AOC WS ISSM. Provide inputs to the AOC WS ISSM for designing and developing organizational information systems and upgrading legacy systems.
  
• Employ best practices when implementing security requirements for information systems including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques.
  
• Apply knowledge of technical, analytical skills to ensure the confidentiality, integrity, and availability of all information systems assets and ensure compliance with company policies, procedures, contractual, and regulatory requirements.
  
• Experience with architecture, design, and management of network security technologies and best practices. Participate in network and system design to facilitate implementation of appropriate systems security policies for the AOC WS. Work with other AOC WS group members to ensure that updates to the AOC WS baseline Implementation Plans and other documentations (drawings, databases, spreadsheets, etc.) are up to date and accurate.
  
• Responsible for supporting LAN/WAN security solutions including creating and maintaining LAN/WAN security standards and design documentation
  
• Develop and assist with new LAN/WAN security applications and hardware as assigned.
  
• Lead comprehensive network security assessments and risk analyses, proposing robust enhancements to the security infrastructure for AOC WS.
  
• Stay ahead of cyber security developments, recommend cutting-edge security solutions, and manage the integration of these technologies into existing AOC WS development suites.
  
• Develop and implement network security policies, ensuring alignment with legal and organizational standards, and conduct regular system audits to identify and mitigate vulnerabilities.
  
• Participating in network and systems design to ensure implementation of appropriate systems security policies align with AOC WS development suites.
  
• Apply advanced consulting skills and/or extensive technical expertise; full industry knowledge of cybersecurity engineering, cyber forensics, network security tools and technologies, cybersecurity policy, procedures, and workforce structure to design, develop, and implement recommendations for a secure enclave environment, and best practices.
  
• Investigate, monitor, and troubleshoot firewall-related issues including performance and connectivity problems and security logs to identify and respond to potential threats and vulnerabilities, conducting routine PAN OS checks for monitoring and analysis.
  
• Maintain detailed and accurate documentation of firewall configurations, changes, and network diagrams.
  
• Review Information Assurance Vulnerability Alerts/Bulletins (IAVA/B) related to Palo Alto products and develop and implement remediation plans.
  

Requirements

Qualifications

Minimum Required Qualifications:

Citizenship: Must be a US citizen

Clearance : Must have and be able to maintain a Secret level clearance

Education: BS/BA Degree

Years’ experience: 7-10 years of experience in the respective technical/professional discipline being performed, 5 of which must be in the DoD

• Strong understanding of cybersecurity principles, practices, and technologies
  
• Risk Management Framework (RMF), with emphasis on taking projects from Step 1 to Step 5
  
• Vulnerability Management, Tenable Nessus (ACAS-DoD version of Nessus)
  
• STIGs, capable of applying system security engineering expertise to various client/server environments, for e.g., system security design process, engineering life cycle, and vulnerability management support.
  

Preferred Requirements:

• Experience with Cross Domain Solutions and USAF CDS-E
  
• Cloud Service Models
  
• Supply Chain Security
  
• NIAP
  
• DoD Policies for Procedures for Cybersecurity
  
• Network Security
  
• Endpoint
  
• DoD Impact Levels
  
• NSA Type 1 encryption
  
• Working with a CSSP - 16th AF
  

Additional Information

Location: Langley AFB

Onsite: 3-5 days a week

Benefits

• 401(k)
  
• Dental insurance
  
• Health insurance
  
• Life insurance
  
• Paid time off
  
• Professional development assistance
  
• Referral program
  
• Vision insurance