Location: Clearfield, UT

The Cybersecurity Engineer is a key member of the Cybersecurity team and works closely with our customers across functional teams to provide compliance assessments and help engineer secure solutions as they are being developed.

Essential Duties and Job Functions

· Assist customers design, engineer and implement technical solutions

· Lead teams of cybersecurity engineers and analysts in developing solutions across multiple DoD programs

· Coordinate with Risk Management Framework team to ensure design meets specified requirements

· Coordinate with DoD agencies to ensure solutions meet specific security guidelines

· Conduct research, review documentation and provide input for Risk Management Framework packages to the Government for review and approval

· Review Risk Management Framework documentation for completeness and readiness for certification analysis

· Coordinate with the program team to gather artifacts and assist the Government in resolving issues precluding the program from receiving an Authority To Operate

· Assist with FISMA compliance audits and provide status updates to the PM

· Perform regular STIG and vulnerability analysis in compliance with DoD guidelines

· Review compliance with current Cybersecurity policy, regulations, and directives to ensure secure configuration and operation of all operated and maintained IT assets, recommending corrective actions as required

· Assist customers developing new system to design and engineer the systems to meet current cyber security requirements and best practices

Knowledge, Experience and Skills

· Minimum seven (7) years of experience in an Information Security position or IT Audit role with a background in performing security risk assessments

· Experience with system design across multiple areas of operations (AAA, Operating Systems, network layout and design…)

· Requirements gap analysis/traceability

· Proven ability to create and maintain effective documentation, including policies, processes and procedures

· Experience drawing Topology, Data Flow, and Boundary diagrams

· Strong understanding of security concepts and detailed implementation including using NIST 800-53r4 controls as a framework

· Deep understanding of how to tailor security implementation based on mission and threats

· Knowledge of security and IT general controls for application development and management

· Good communications skills, both verbal and written, as well as the ability to communicate well with people in a variety of positions, roles and levels

· Professional, self-motivated and a strong sense of urgency.

· Ability to provide technical direction to more junior team members

Required

· CISSP, CISSP-ISSEP, CISSP-ISSAP

· Active DoD SECRET clearance (ability to gain Top Secret)

Preferred

· BS/BA degree or an equivalent combination of education and experience

· Training in Risk Management or IT Audit Methodology strongly desired