Space/Ground System Solutions Inc
Pr. Cybersecurity & Compliance Engineer
Space/Ground System Solutions Inc, Washington, District of Columbia, us, 20022
Space Ground System Solutions, a Parsons company, has an immediate full-time opening for a Principal Cybersecurity & Compliance Engineer to support the Naval Research Laboratory (NRL) in Washington, DC. We are seeking a Principal Cybersecurity & Compliance Engineer who can structure, design, execute, and manage security solutions for a growing portfolio of software- and IT-centric projects to deliver ground-to-space transmit/receive services for the Naval Research Lab (NRL) and NRL's sponsors. A successful candidate will bring experience engineering efficient security solutions that enable rapid iterative system development in a classified security context.RESPONSIBILITIES
Design, deliver, and operate a security structure, in close partnership with the US Naval Research Lab and sponsor program security management to deliver antenna services to the broader community
Support and liaise with government program management, security controls assessors, and authorizing officials (AOs) to ensure the integrity, security, and reliability of our services
Developing and accrediting a secure design for iterative delivery of services in AWS GovCloud
Work with and lead a multidisciplinary team including IT engineers, security personnel, and software developers through clear communication and direction to deliver a complete, secure, compliant systems solution.
Utilize security experience of various security disciplines (i.e., physical, safeguarding, and classification management) to determine, apply, monitor and ensure appropriate security requirements applicable to the work programs.
Implement, document, and verify security controls in commercial or private cloud-hosted information systems and orchestrate transition to government ownership and operation.
Work with software, network, IT, facilities, and program security officials to design, assess, and mature the security posture of a multi-level (unclass through TS) DevSecOps pipeline.
Design and coordinate the integration of defensive cyber operations sensors and sources into enterprise monitoring constructs.
Enable a cross-organization, geographically distributed system development team to effectively deliver new software and IT services.
Implement the management and training for software developers, system administrators, and other IT personnel, spearheading the integration of security concerns into a holistic engineering culture.
Develop incident management plans, and conduct clear and concise assessments, corrective action plans, policies, procedures, and reports. This includes investigations of security incidents to determine the potential for compromise of program information, conducting government required self-inspections to ensure compliance with sponsor regulations and reduce security risks within NRL-managed and peer systems.
REQUIRED QUALIFICATIONS
Must be a US citizen
Active DoD Secret
clearance
required; with the ability to obtain a TS/SCI clearance and other accesses within one year of hire
BS in relevant field (Computer Science, Software Engineer, Information Technology) and 15 years of related experience
10+ years of contractor or government program security experience supporting classified programs
Familiarity with security manuals, directives, and Executive Orders including NISPOM, DCIDs, ICDs, Sponsor Instruction, DODM 5205.07
Demonstrated history of teamwork and service skills
Demonstrated ability to communicate clearly, verbally and in writing, to supported staff, management, and government customers
Experience developing formal authorization and accreditation packages and associated bodies of evidence as a part of an IT team
Deep familiarity with NIST 800-53/RMF and/or NIST 800-171 and CMMC compliance frameworks, including process and technical implementation
Exposure to 800-53/171 compliance in the commercial cloud environment
Familiarity with automation e.g., Ansible, Terraform, CloudFormation, InSpec to implement and verify security compliance
PREFERRED QUALIFICATIONS
Strong preference for candidates holding current TS/SCI and experience in applying cybersecurity monitoring and compliance in accredited TS systems
Experience with securing commercial cloud-hosted workloads
Demonstrated experience with achieving formal gov't authorizations in commercial cloud-hosted systems (e.g., AWS GovCloud, C2S, etc)
Experience serving in security engineering and compliance for a classified IT development program
Knowledge of National Security Space systems
==============================================================SGSS is passionate about making our nation the undisputed leader in Space because we understand that ensuring our security for future generations depends on it. We have emerged as a leader in the development of cutting-edge solutions for the Department of Defense and Intelligence Community. Our tremendous success can be attributed to our people and our priorities. Do you want to be part of a team that is helping the government solve major national security challenges in the space domain? We need your help.
SGSS believes in taking care of their employees by offering:
ALL benefits fully funded, for your entire family
Medical/Dental/Vision/Group Life/STD/LTD - no employee premiums
HSA (Health Savings Account) provided, with SGSS funding the maximum amount allowed by the IRS
Retirement Savings Plan (RSP/401k) with a 20% annual company contribution - no employee contribution required
===============================================================
If this position requires a government clearance, the applicants selected will be subject to a government security investigation and must meet eligibility requirements for accessing classified information.Each Division of Parsons is an Equal Opportunity/Affirmative Action Employer. All divisions are committed to making employment decisions based on valid requirements, without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity, veteran status, disability, or any other status protected by state, local or federal law. For more information, please visit www.eeoc.gov.
If the offer is accepted for this position the candidate would be required to successfully complete drug screen and background check.
Design, deliver, and operate a security structure, in close partnership with the US Naval Research Lab and sponsor program security management to deliver antenna services to the broader community
Support and liaise with government program management, security controls assessors, and authorizing officials (AOs) to ensure the integrity, security, and reliability of our services
Developing and accrediting a secure design for iterative delivery of services in AWS GovCloud
Work with and lead a multidisciplinary team including IT engineers, security personnel, and software developers through clear communication and direction to deliver a complete, secure, compliant systems solution.
Utilize security experience of various security disciplines (i.e., physical, safeguarding, and classification management) to determine, apply, monitor and ensure appropriate security requirements applicable to the work programs.
Implement, document, and verify security controls in commercial or private cloud-hosted information systems and orchestrate transition to government ownership and operation.
Work with software, network, IT, facilities, and program security officials to design, assess, and mature the security posture of a multi-level (unclass through TS) DevSecOps pipeline.
Design and coordinate the integration of defensive cyber operations sensors and sources into enterprise monitoring constructs.
Enable a cross-organization, geographically distributed system development team to effectively deliver new software and IT services.
Implement the management and training for software developers, system administrators, and other IT personnel, spearheading the integration of security concerns into a holistic engineering culture.
Develop incident management plans, and conduct clear and concise assessments, corrective action plans, policies, procedures, and reports. This includes investigations of security incidents to determine the potential for compromise of program information, conducting government required self-inspections to ensure compliance with sponsor regulations and reduce security risks within NRL-managed and peer systems.
REQUIRED QUALIFICATIONS
Must be a US citizen
Active DoD Secret
clearance
required; with the ability to obtain a TS/SCI clearance and other accesses within one year of hire
BS in relevant field (Computer Science, Software Engineer, Information Technology) and 15 years of related experience
10+ years of contractor or government program security experience supporting classified programs
Familiarity with security manuals, directives, and Executive Orders including NISPOM, DCIDs, ICDs, Sponsor Instruction, DODM 5205.07
Demonstrated history of teamwork and service skills
Demonstrated ability to communicate clearly, verbally and in writing, to supported staff, management, and government customers
Experience developing formal authorization and accreditation packages and associated bodies of evidence as a part of an IT team
Deep familiarity with NIST 800-53/RMF and/or NIST 800-171 and CMMC compliance frameworks, including process and technical implementation
Exposure to 800-53/171 compliance in the commercial cloud environment
Familiarity with automation e.g., Ansible, Terraform, CloudFormation, InSpec to implement and verify security compliance
PREFERRED QUALIFICATIONS
Strong preference for candidates holding current TS/SCI and experience in applying cybersecurity monitoring and compliance in accredited TS systems
Experience with securing commercial cloud-hosted workloads
Demonstrated experience with achieving formal gov't authorizations in commercial cloud-hosted systems (e.g., AWS GovCloud, C2S, etc)
Experience serving in security engineering and compliance for a classified IT development program
Knowledge of National Security Space systems
==============================================================SGSS is passionate about making our nation the undisputed leader in Space because we understand that ensuring our security for future generations depends on it. We have emerged as a leader in the development of cutting-edge solutions for the Department of Defense and Intelligence Community. Our tremendous success can be attributed to our people and our priorities. Do you want to be part of a team that is helping the government solve major national security challenges in the space domain? We need your help.
SGSS believes in taking care of their employees by offering:
ALL benefits fully funded, for your entire family
Medical/Dental/Vision/Group Life/STD/LTD - no employee premiums
HSA (Health Savings Account) provided, with SGSS funding the maximum amount allowed by the IRS
Retirement Savings Plan (RSP/401k) with a 20% annual company contribution - no employee contribution required
===============================================================
If this position requires a government clearance, the applicants selected will be subject to a government security investigation and must meet eligibility requirements for accessing classified information.Each Division of Parsons is an Equal Opportunity/Affirmative Action Employer. All divisions are committed to making employment decisions based on valid requirements, without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity, veteran status, disability, or any other status protected by state, local or federal law. For more information, please visit www.eeoc.gov.
If the offer is accepted for this position the candidate would be required to successfully complete drug screen and background check.