Cyber Engineer (SECRET-TS/SCI)

This position is performed on-site at MacDill AFB, Tampa, FL.  An active security clearance (and US Citizen) is required for this position.

Must have at least a Secret clearance to start; this is an opportunity to get upgraded to a TS/SCI

1. Be experienced with security engineering as well as subject matter expert in the DoD/DISA Information Assurance (IA) requirements and have expert knowledge of policies and processes, the DOD Risk Management Framework (RMF), NIST SP 800-53 and CNSSI 1253 security controls, the DoD network environment, industry computer/security standards/best practices, and DoD CND initiatives.
2. Have experience in providing specialized technical subject matter expertise in the planning, and orchestration of the defense-in- depth security engineering, relevant technology and process development, implementation such as security testing, certification and accreditation, intrusion detection policy development, security baseline management as well as IA focused software development in a mixed Windows/Linux environment.
3. Have working knowledge of enclave protection technologies to include Firewalls, Network IDS/IPS systems, Host Based IDS/IPS and Security Incident and Event Management (ArcSight SIEM). Must have solid working experience in designing secure network architectures, virtualization technologies, MySQL/MSSQL database platforms, identity and access management principles, application security, encryption technologies, DNS, web applications, ADFS, Nessus.
4. Formulates and designs specifications; developing, modifying, and/or maintaining complex systems and subsystems; defining work problems, designing technology solutions, and developing procedures to resolve problems; analyzing methods of approach; reviewing task proposal requirements, gathering information, analyzing data, preparing synopsis, comparing alternatives, preparing specifications, resolving processing problems, and coordinating work with others; and preparing recommendations for improvement for management consideration.

Skills and Knowledge Requirements

• •    Experience with implementing IPS/IDS capabilities.
  •    Experience with Assured Compliance Assessment Solution (ACAS/NESSUS), DISA Security Content Automation Protocol (SCAP), Host Based Security System (HBSS); Continuous Monitoring and Risk Scoring (CMRS) cybersecurity applications and tools.
  •    Experience with implementing capabilities within VMware virtual environments.
  •    Experience with implementing McAfee products.
  •    Working knowledge of network infrastructure technologies/practices to include Cisco IOS, VLAN segmentation, Network Access Control (802.1x), and wireless detection tools.
  •    Cross Domain data access and transfer technologies and related DISN Connection Approval Process.
  •    Working knowledge of protection of data in transit and data at rest to include Suite B and IPsec encryption.
  •    Experience with Microsoft Visio diagram development for systems data flow representation.
• Experience with the DoD COCOM cybersecurity environment, organization, policies, and programs (ie SOCOM, SOUTHCOM, CENTCOM).
• Experience with implementing IPS/IDS capabilities.

Education and Certification Requirements

Bachelor’s Degree in Computer Science, or a related technical discipline, or the equivalent combination of education, technical certifications or training, or work experience.

• 5+ years of experience as a cyber-security engineer
• CompTIA Security+ or equivalent certification required for DoD 8570 compliance
• At least one relevant and current security related professional certification

Desired Education and Skills:

• The following certifications are great to have but not required. If you don't have these certifications, we will work with you to obtain them: Certified Information Systems Security Professional (CISSP); ITIL v3 Foundations; Virtualization experience, specifically with VMware vSphere and VMware Horizon View; Microsoft Certified Professional; CCNA