TITLE: Senior Cyber Security Engineer - Contingent
POSITION DESCRIPTION: Senior Cyber Security Engineer
FLSA: Full-Time Exempt
LOCATION: Joint Base Langley-Eustis, VA
CLEARANCE REQ: Secret or Higher Level
WHO WE ARE:
CommandTec, LLC is an 8(a), Woman Owned Small Business (WOSB), Economically Disadvantaged Women-Owned Small Business (EDWOSB), Small Disadvantaged Business (SDB), and Service-Disabled Veteran-Owned Small Business (SDVOSB) and Historically Underutilized Business (HUBZone), headquartered in Huntsville, AL. As a diversified professional services company, CommandTec takes great pride in providing a broad range of Intelligence, Training, Enterprise IT and Process Improvement solutions to US Government agencies and commercial customers.
JOB SUMMARY:
The position provides support for the Program Management (PM) of the Army Data and Analytics Platform (PM ARDAP). This is a portfolio of systems that will modernize Army business processes and enable scalable, agile, and trusted data platforms integrated with data services/applications, visualization, and analytic tools to facilitate fact based and resource-informed decision-making. The ideal candidate will provide leadership in designing, assessing, and implementing security controls across complex systems, ensuring compliance with DoD standards and the confidentiality, integrity, and availability of Army systems.
ESSENTIAL FUNCTIONS:
- Lead the implementation of administrative, physical, and technical security controls across the ATIS portfolio, ensuring compliance with DoD RMF requirements.
- Conduct independent security assessments and testing to identify risks, recommend mitigation strategies, and ensure continuous compliance.
- Manage the Plan of Action and Milestones (POAM) process, documenting mitigations and overseeing their resolution within defined timelines.
- Serve as a technical advisor for RMF controls implementation, collaborating with the Information System Security Manager (ISSM) to maintain eMASS records.
- Perform Independent Verification and Validation (IV&V) testing and report on findings, including compliance with RMF and continuous monitoring requirements.
- Lead risk assessments for third-party systems, evaluating vulnerabilities and proposing actionable remediation strategies to protect Army systems.
- Oversee system security scans and vulnerability assessments, ensuring compliance with Army and DoD cybersecurity policies.
- Define and maintain security standards, policies, and procedures, ensuring they are operationally effective and meet Army requirements.
- Provide guidance on incident response investigations, identifying opportunities for improvement in incident handling and mitigation efforts.
- Collaborate with stakeholders to implement and monitor security safeguards using cutting-edge technologies, such as encryption, remote access, and antivirus systems.
|