Position Description

APPLY today for a Cybersecurity Engineer position in Huntsville, AL. Join our team providing cybersecurity services to U.S. Army Space Missile Defense Command (USASMDC) contracts, including hardware and software assurance, security assessments, and FedRAMP cloud accreditations.

The cybersecurity engineer's primary job responsibilities will include supporting the accreditation of cloud applications and acting as a security controls assessor for hardware and software assess only packages.

Responsibilities include:

• Evaluate networks, IT components, and weapon system for compliance with published DoD guidance
• Perform vulnerability and STIG compliance scans to include Assured Compliance Assessment Solution (ACAS) Security Center & Security Technical Implementation Guidelines (STIG) Compliance Checker (SCC)
• Perform Dynamic and Static Application Security Testing (DAST) (SAST) for hardware and software accreditations and assess risk levels based upon the cybersecurity architecture and mitigation
• Define requirements, help evaluate and analyze new technology, platforms, and applications
• Create, design, and document processes to support compliance with NIST and other applicable DoD guidance
• Generate and maintain Enterprise Mission Assurance Support Service (eMASS) authorization packages for the System Owner or Information Systems Security Manager-Organization (ISSM-O), to support the issuance of an Authority to Operate (ATO) and Connect (ATC)
• Develop Enterprise Mission Assurance Support Service (eMASS) artifacts, such as RMF policies and procedures, Systems Security Plans (SSPs), risk assessment reports, and Plans of Actions and Milestones (POA&Ms)
• Generate Security Assessment Test Plans (SAP) and articulate cybersecurity assessment findings in technical and non-technical ways to the customer
• Research open source, government off the shelf, commercial software looking for supply chain issues and known vulnerabilities

Qualifications

To be successful in the position, you will have the following required skills and qualifications:

• An ACTIVE DoD Secret Clearance
• Application Security or development experience
• 8570 IAT Level II certification or greater (e.g., CompTIA Sec+)
• Excellent written and oral communication skills and proficiency with the Microsoft Office Suite
• Familiarity with NIST SP 800-53 RMF controls

Additional desired skills and qualifications:

• Amazon AWS experience
• Docker experience
• CISSP, CCSP, GCP, AWS certifications, or other cloud security related certifications

Company Overview

Serco Inc. (Serco) is the Americas division of Serco Group, plc. Serco serves every branch of the U.S. military, numerous U.S. Federal civilian agencies, the Intelligence Community, the Canadian government, state and local governments, and commercial clients. We help our clients deliver vital services more efficiently while increasing the satisfaction of their end customers. Headquartered in Herndon, Virginia, Serco Americas has over 9,000 employees and is part of a $4 billion global business that helps transform government and public services around the world. At Serco, our employees are our most valuable asset - we listen, respect and support them throughout their career at Serco. We invite you to become part of our dynamic team. Serco is an equal opportunity employer committed to diversifying our workforce (Race/ Color/ Sex/ Sexual Orientation/ Gender Identity/ Religion/ National Origin/ Disability/ Vets).

To review Serco benefits please visit: https://www.serco.com/na/careers/benefits-of-choosing-serco.

If you require an accommodation with the application process please email: [email protected] or call the HR Service Desk at 800-628-6458, option 1. Please note, due to EEOC/OFCCP compliance, Serco is unable to accept resumes by email.

Serco does not accept unsolicited resumes through or from search firms or staffing agencies without being a contracted approved vendor. All unsolicited resumes will be considered the property of Serco and will not be obligated to pay a placement or contract fee. If you are interested in becoming an approved vendor at Serco, please email [email protected].

COVID-19 Regulations: Serco complies with all applicable COVID-19 requirements. This may require employees to be vaccinated against COVID-19, provide attestations regarding vaccination status and/or COVID-19 testing, or satisfy other conditions of employment that Serco deems appropriate, and employees may be required to show proof of vaccination and/or negative COVID-19 test results as a condition of employment (except in limited circumstances where an employee is legally entitled to an accommodation).