Information Assurance Engineer (Cybersecurity) Job in Norfolk

4061 IT & Software Developer jobs in the US

Company Size

5k+

Company Type

Services

Exp Level

Regular

Job Type

Full-Time

Language

English

Visa sponsorship

Requirements

Must:

- Bachelors degree and 8-12 years of prior relevant experience or Masters with 6-10 years of prior relevant experience in Cybersecurity, Information Security, IT, EE, Network Engineering, Computer Science, or related field. - US Citizen with DoD Secret Clearance. - Active security certification meeting DOD 8570 IAT level III or higher. - Thorough understanding of the RMF steps, particularly Steps 4 to 7. - Ability to identify applicable STIGs after reviewing a system authorization boundary and its components. - Skill in decomposing a security control/security check and ensuring artifact and test results satisfy the control/AP/check. - Familiarity with techniques for system exploitation (MITRE ATTACK) to assess risk and mitigation strategies. - Knowledge of technical mitigations and resources for identifying appropriate mitigating factors. - Experience with eMASS including control inheritance, TR Import, and POAM functionalities. - Capability to support cybersecurity authorization activities in compliance with current Cybersecurity and IA manuals, instructions, and guides. - Ability to verify patch compliance using approved solutions such as ACAS, IAVA compliance dashboards, and Microsoft Defender for Endpoints. - Experience in executing security procedures, validating information system security requirements, and coordinating STIG checklist execution, review, and disposition. - Proven ability to independently develop and maintain system security documentation, including guiding SOPs, TTP, POA&Ms, and FISMA Score Cards. - Familiarity with developing and applying business processes ensuring the correct security level. - Ability to document Ports, Protocols, and Services (PPS), ensuring accurate data flows and compliance with DODI 8551.1. - Practical experience with various cybersecurity tools and DoD networks. - Experience with FISMA and related compliance reporting. - Attention to detail. - Capability to manage multiple tasks and self-assign work in a dynamic environment. - Strong analytical, communication, and troubleshooting skills for effective collaboration with virtual teams and clear status reporting. - Experience in cybersecurity assessment, vulnerability scanning, integration and testing, data analytics, or security operations. - History of leading cybersecurity tasks and collaborating with stakeholders and team members. - Knowledge of cybersecurity assessment processes per DoDI 8500.01, DoDI 8551.01, and NIST guidelines. - Experience in supporting formal Cybersecurity/IA testing and preparing System Security Plans. - Strong verbal and written communication skills for business writing on complex topics and interaction with diverse stakeholders. - Understanding of conducting security monitoring, reporting, and maintaining compliance with regulations and policies. - Expertise in Security Engineering, Architecture, Vulnerability Assessment, Incident Management, Security Operations, and Policy Development. - Self-motivated with leadership capabilities to work effectively in a matrix organization.

Technologies

Backbone

Cloud

Hardware

Support

ITIL

Matrix

Network

Security

DevOps

Responsibilities

- Act as the primary information system security engineer (ISSE) for Authorization to Operate (ATO) packages under the Risk Management Framework (RMF). - Assist in drafting and reviewing ATO submissions, coordinating updates, and corrections to assessment and authorization (A&A) artifacts. - Assess software and hardware in pre-acquisition phases to ensure minimum security requirements are met based on NIST SP 800-53 Rev4 controls. - Author, review, coordinate, and submit cybersecurity authorization artifacts to eMASS to achieve milestones like Interim Authority to Test (IATT) and ATO according to the project timeline. - Conduct cybersecurity authorization activities to align with current Cybersecurity and IA manuals, instructions, and guides under DoDI 8500.01, DON 5239, and Marine Corps ECSMs. - Continuously monitor system resources using automated scanning and implement automated reporting feeds for authorizations. - Ensure patch compliance via approved technical solutions such as ACAS and IAVA compliance dashboards. - Collaborate with local administrators to identify and resolve patching issues promptly to maintain compliance timelines. - Support implementation of security protocols and validate security requirements for information systems by coordinating execution and review of STIG checklists. - Develop and sustain system security documentation, drafting, reviewing, and refining guidance for SOPs, TTP, POA&Ms, and the FISMA Score Card. - Participate in regular briefings with customers on cybersecurity statuses and prepare relevant briefing materials. - Support site visits and audits, including System Readiness Reviews (SRR). - Ensure secure and efficient operation of network systems, architecture, and topology. - Collaborate in developing and applying business processes to ensure adequate security levels. - Engage in strategic planning for network, security, and operational technologies. - Guide engineering managers in incorporating approved defense-in-depth principles and practices based on cybersecurity requirements. - Document and discuss Ports, Protocols, and Services (PPS), ensuring accurate data flows, compliance with CAL boundaries, and proper registrations per DODI 8551.1.

Description

At Leidos, were leading the way in delivering innovative solutions for government and commercial clients worldwide. As a key player in the largest IT services program for the Navy and Marine Corps, we provide essential cybersecurity services and network operations. Our team is committed to enhancing capability and efficiency while ensuring comprehensive security. Located in Reston, Virginia, we foster a dynamic work environment that is driven by innovation and collaboration. We offer competitive compensation, a comprehensive benefits package, and opportunities for professional growth, all designed to support our employees in achieving their career goals.

Something wrong or incorrect with this job? Tell us in the chat 💬 on the right ➡️

IT & Software developer jobs in the USDevOps Engineer jobs in the USDevOps Engineer jobs Norfolk, VA

You can find DevOps salaries in the United States here.

How many DevOps jobs are in the United States?

Currently, there are 4061 DevOps openings. Check also: Cloud jobs, AWS jobs, Azure jobs, GCP jobs, Kubernetes jobs, Docker jobs, Terraform jobs - all with salary brackets.

Is the US a good place for DevOps?

The US is one of the best countries to work as a DevOps. It has a vibrant startup community, growing tech hubs and, most important: lots of interesting jobs for people who work in tech.

Which companies are hiring for DevOps jobs in the United States?

Space Ops Inc., Decisive Dividend Corporation, D3 Security Management Systems, GINGER Telecom, Gatestone & Co. Inc, GE Aerospace, IntouchCX among others, are currently hiring for DevOps roles in the United States.

The company with most openings is Judge Group, Inc. as they are hiring for 298 different DevOps jobs in the United States. They are probably quite committed to find good DevOps.