SUMMARY
Cypher Intelligence LLC is seeking a Senior Principal Cyber Security Engineer to support a cleared program in McLean.
The successful candidate provide SME level, INFOSEC leadership and support to a mission focused (non-enterprise), highly unique IT program. Responsibilities will include, but are not limited to, the following:- Provide daily INFOSEC support, engagement and expertise for all system, network and technology security activities within the program.
- Work in this capacity will require expert level knowledge of the customer’s Information Assurance, Certification & Accreditation and Assessment & Authorization activities.
- Provide leadership and guidance to more junior cyber security engineers on the program
- Responsible for management, oversight and processing organizational technologies to successfully pass them through the customer’s security processes for ATO.
- Regular formal and informal technical briefings of proposed technologies, concepts, capabilities and activities with the senior customer security staffs
- Work independently or as part of a team to conduct and document system scans, POAMS, mitigations as well as closely coordinating and tracking systems as they transit the accreditation process
- Creating, assembling, and delivering security plans and associated documentation packages
- Interfacing and advising technical staff
REQUIRED EXPERIENCE, SKILLS, & TECHNOLOGIES- Active/current TS/SCI with Polygraph
- Experience in an ISSO /ISSE / ISSM roles.
- Understand Information Technology concepts, plans and capabilities.
- Ability to communicate technical concepts at all levels with practitioners, management and customers alike.
- Expert knowledge of Intelligence Community Information Security and Assurance policies, regulations and procedures.
- Expert knowledge and experience carrying projects through the customer’s accreditation process to ATO (Authority to Operate).
- Experience authoring and maintaining systems security documentation including security assessments, mitigations and reporting.
- Expert domain knowledge of ICD503 and Risk Management Framework for successful A&As.
- Excellent verbal, writing and presentation skills
- No OCONUS travel anticipated, however may be required based on customer needs
- Up to 10% CONUS travel, as required based on customer need
- Broad information technology exposure (virtualization, cloud, networking, Linux and Microsoft).
- Knowledge of FISMA, DCID 6/3, ICD 503 Standards
- XACTA
- Nipper
- Tenable/Nexus
- Knowledge of Customer organization and processes specific to security requirements for IT systems and accreditation/certification
- Knowledge of FISMA, DCID 6/3, ICD 503 Standards
Must have TS/SCI security clearance with Poly on day one of employment and must be eligible for crossover