Cybersecurity Computer Network Defense Engineer IRES – SAFB – United States

at CH2M & Jacobs
Location Colorado Springs, CO
Date Posted February 2, 2019
Category Default
Job Type Full-time


The Enterprise Cybersecurity Design Engineer will provide detailed designs to implement Cybersecurity security services, to include, HBSS, NESSUS ACAS Scanning, ArcSight syslog as a service to 2-letter command site networks. The Cybersecurity Design Engineer will provide these sites with the ability to comply with the National Institute of Standards and Technology (NIST)/DISA Department of Defense (DOD) Risk Management Framework (RMF) process requirements. The candidate will also be responsible for applying system cyber security engineering principles to provide realistic solutions designed to enhance the security posture of the MDA network infrastructure. Leverage tools like ACAS and SCAP. The successful candidate will be required to coordinate efforts with Network Design Engineering and Project Management personnel to resolve Engineering Change work orders. This position may occasionally be required to work extended and/or off-nominal hours.  Tasks:  Identify needs and develop appropriate cyber service design.  Perform system design and admin support on specialized Computer Network
Defense (CND) applications and systems (e.g., ArcSight, HBSS, ACAS) to include design, implementation, configuration.  Coordinate CSP implementations with CERT,  IA, site and Compliance Operations center personnel.  Review system changes for security implications and recommend improvements.  Research and draft Cybersecurity design goals in conjunction with Architectural standards and requirements policy and procedure information in accordance with NIST, DISA, DOD, MDA, and 2-letter organizational guidance.  Provide top-tier support to the Cybersecurity operations staff for resolving complex Cybersecurity issues, including but not limited to MacAfee Host-Based Security System (HBSS) and Multifactor/Public Key Infrastructure (MFA/PKI) implementation support, DoD Cyber Tasking Orders (CTOs), auditing, and incident response.  Design solutions that utilize Assured Compliance Assessment Solution (ACAS) and related tools to discover system vulnerabilities and report these vulnerabilities to customers.  Evaluate security CND systems platform configurations with respect to Defense Information Systems Agency (DISA) Secure Technical Implementation Guides (STIG), NIST 800-53 Security Controls and ISO/IEC 15408 Common Criteria to formulate and implement compliant systems design implementations and be accountable for quality work products.  Maintain smooth operation of multi-user computer systems, including coordination with network and systems engineers, systems administrators and application administrators.  Ensuring system software implementations align with Architectural Engineering Visions and Design requirements.  Interact with users and coordinate implementations to meet specified CSP service needs as detailed within the scope of tasks.  Evaluate vendor products and make recommendations to purchase hardware and software.  Working within the Security Engineering team to provide design engineering solutions to meet the needs of MDA and site customers as assigned. 


Requirements: High School Diploma with 8 years general experience or Associates with 6 years general experience or Bachelors with 4 years experience;  must include 4 years directly related experience.  Must have or be able to obtain a DoD 8570.01-M IAT Level II certification (e.g., CISSP, Security CEH, etc.) within six months of hire.  Minimum of 2 years experience in designing engineering solutions to integrate CND Services into DOD network environments, (to include HBSS, ArcSight, SIEM, Nessus ACAS scanning tools.  Strong Cyber Security background working to MDA, DISA, NIST, CERT and DOD RMF, Cybersecurity guidelines and compliance requirements.  Firm understanding of Security related STGS, SCAP Tools. Must have a current active DoD Secret Clearance.  

  • Desired:  MacAfee HBSS, EPO certified, 2-5 years experience within a network scanning and network security environment, ArcSight certified
  • Jacobs is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other characteristics protected by law. Jacobs is a background screening, drug-free workplace.

    About Jacobs

    Jacobs leads the global professional services sector delivering solutions for a more connected, sustainable world.

    With $15.0 billion in combined revenue and a talent force more than 77,000 strong, Jacobs provides a full spectrum of services including scientific, technical, professional, construction- and program-management for business, industrial, commercial, government and infrastructure sectors.

    For more information, visit web address removed>