Cyber Security Engineer (TS/SCI Clearance Required)

***This job requires active TS/SCI clearance.  Please apply only if you have an active TS/SCI clearance. ***

North Point Technology is looking for TS/SCI Cleared Cyber Security Systems Engineer to become a member of a Accreditation and Authorization Team. This team is responsible for applying an interdisciplinary, collaborative approach to plan, design, develop, validate and verify Cyber solutions across the lifecycle. The desired candidate will be able to conduct cyber risk assessment activities including threat modeling, vulnerability analysis and analysis of mitigation solutions. They will also evaluate and analyze design constrains, trade-offs and detailed system and security design as they pertain to the Cyber domain. Furthermore, they will conduct cybersecurity test and evaluation of hardware and/or software designs to verify and validate compliance with defined specifications and requirements, and employ cyber security processes, methods, techniques and tools and assure their consistent application. Finally, they will implement appropriate Assessment and Authorization activities as required by customers.

As a member of the GVS Accreditation and Authorization Team, you will coordinate with multiple teams across the GVS program in an Agile team environment. You will interface with our Operations, Development, Deployment, and Systems Engineering teams, and hill help to derive innovative solutions to complex technical problems to provide our customers with a secure system and new capabilities. In addition, you will interface and collaborate cross-functionally with government personnel, customer partners, subcontractors, local engineers, and geographically dispersed teammates.
In this role, you will also perform the following:

• POA&M Workoff Plan & Execution
• EVSS Admin/System Vulnerability Audit/Analysis/Compliance/Remediation
• Xacta Body of Evidence (BoE) Definition for customer assets as driven by change requests
• Demonstration Test Plan (DTP) definition and execution
• System Change Request and Software Build Technical Investigations
• New and Version Upgraded COTS/GOTS Software Review and Security Risk assessment
• Daily System Audit Analysis and Log Review
• IATT/CONOPS definitions and approvals
• Security Design and Architecture
• STIG Hardening Guidance
• Security Test Definition, Execution, and Gov. Witness Testing and Test Report Generation
• Govt. Audit Support
• Security Tool Design and System integration Support

Basic Qualifications:

• Active Top Secret clearance with SCI with Poly required
• DOD 8570 Experience.
• Experience implementing ICD 503 RMF.
• Knowledge of common security tools such as XACTA (Telos), HBSS, Vulnerability Security Service (EVSS), ACAS (Tenable/Nessus), and Splunk.
• Demonstrated experience working across multiple teams and job functions, bridging both sustainment and enhancement priorities

Desired Skills:

• Secure Configuration/Hardening of DoD Information Systems.
• COTS & GOTS software installation, updates, and maintenance
• Linux shell scripting
• Linux command line proficiency
• Experience with AWS EC2 instances, RDS, and S3
• Administration, operations, and maintenance of enterprise cloud systems
• Administration, operations, and maintenance of non-cloud virtual environments
• Experience applying and implementing operating system patches and upgrades
• Familiarity with RMF, NIST 800-53 controls, STIGs
• Security+ or equivalent IAT Level II DoD approved 8570 baseline certifications