Cybersecurity Engineer 
Secret Clearance
Aberdeen Providing Ground, MD
IAM Level II cert (e.g. CAP, CASP+ CE, CISM, CISSP) required
100% onsite

Major Duties & Responsibilities:
???    Provide cybersecurity services to protect information and information systems from unauthorized access and to protect the data within systems.
???    Validate technical standards and security policy for LAN topologies and components; identify and remediate security vulnerabilities.
???    Administer Host-Based Security System (HBSS).
???    Provide reports and documentation in support of the submission (and continuous monitoring) for the RMF.
???    Assist with preparation for DISA CCRIs and other DoD or Department of the Army Cybersecurity related inspections/evaluations.
???    Provide DoD PKI services including directory support, certification validation, registration, interface to related Army systems, hosting of PKI-enabled servers, and required key management services, as well as PKI solutions for email, web applications, file transfer, and Virtual Private Networks.
???    Provide PKI authentication for users??? devices and applications to utilize global information services data and enable CAC Cryptographic Logon (CCL), when applicable, for controlling logical access. Utilize the eMASS to record RMF activities such as all relevant security controls.
???    Provide IAVA compliance and compliance monitoring of all network connected assets.
???    Manage the IAVM program for all RNEC-Aberdeen managed devices for installation and customer activities.
???    Manage compliance reporting using ACAS to ensure that IAVM messages are acknowledged, corrective action implemented, extensions requested, compliance verified, and reporting data entered into required database/system.
???    Develop Mitigation Action Plan (MAP) and IAVM POA&M.
???    Plan, detect, respond, investigate, and report malicious and unauthorized activities.
???    Manage cybersecurity hardware and software changes for the installation.
???    Provide host-based firewall management for enterprise managed assets and workstations.
???    Determine abnormalities, attacks, damages, and unauthorized modifications in the network via mechanisms such as intrusion detection devices.

Qualifications:
???    4-6 years experience in a cyber security role.
???    Bachelor???s degree in a related field desired.
???    Must hold at least one of the following certifications in compliance with DoD 8570 requirements for IAM Level II: CAP, CASP CE, CISM, or CISSP.
???    Experience with HBSS.
???    Hands-on experience and training on the verification and enforcement of Security Technical Implementation Guide (STIG) identification and remediation.
???    Hands-on experience and training on the verification and enforcement of Information Assurance Vulnerability Management (IAVM) identification and remediation.
???    Experience with reporting, scanning and analysis using Assured Compliance Assessment Solution (ACAS).
???    Knowledge of Certification & Accreditation (C&A) processes and the Risk Management Framework (RMF).
???    Experience with Enterprise Mission Assurance Support Service (eMASS). Knowledge of Public Key Infrastructure (PKI).
???    Knowledge of Cyber Command Readiness Inspection (CCRI) or similar functions/audits.
???    Knowledge of Incident Response Plans (IRP) and incident response executions.
???    Extensive experience in cybersecurity documentation and system authorization artifacts (System Security Plan, lifecycle documentation, continuous monitoring plan Security Assessment Plan, Security Assessment Report, Risk Assessment, etc.).
???    Possess excellent technical writing, critical thinking/analytical, oral and written communication skills.
???    Extensive knowledge of RMF to include the RMF Knowledge Service.
???    Knowledge and experience communicating IA concepts to technical and nontechnical personnel.
???    Able to develop technical documents and produce system design documentation.
???    Must have excellent customer service skills; be able project a positive image and professional manner at all times; and be able to work within the confines of a set time schedule.
???    Must be a US citizen and hold a current Secret clearance.