Senior System Security Engineer

    • Chantilly, VA

Overview

AbleVets, LLC, A Cerner Company, provides healthcare information technology services and resources to help the Veterans Affairs (VA) and Department of Defense (DoD) improve the lives of the people they serve. This position is located in Chantilly or Arlington, Virginia.

Responsibilities

A successful System Security Engineer has IT experience with FISMA implementation, NIST guidelines, federal cybersecurity policy and security engineering principles. The candidate must be well versed in applicable laws and standards such as Privacy and HIPPA to implement secure applications and networks. Must have familiarity and experience in the implementation of cyber security requirements in accordance with FISMA and FedRAMP guidelines. Duties and responsibilities may include, but are not limited to:

  • Implement the Cyber Security requirements of IT systems and applications documenting them in formal security engineering documents using Risk Management Framework and supporting artifacts associated with the A&A process
  • Identify security risks through the security impact analysis, system risk assessments and technology security risk reports
  • Organize, develop, and present security briefings, written summaries, and written reports incorporating narrative, tabular and/or graphic elements on A&A activities
  • Implement IT security solutions and assure successful implementation
  • Apply knowledge of security principles, policy, and regulations to daily tasking
  • Provide IT security engineering support to cross-functional project teams to ensure that customer security policies, processes, and controls are adhered to, planned for, implemented throughout the project lifecycle, and provide strategic cyber security support
  • Provide an analysis of how customer currently employs and embeds Cybersecurity into its cloud environment, datacenters, and mobile technologies
  • Develop systems security engineering documents based on engineering principles from NIST 800 160, including any specific recommendations describing efficiencies and improvements
  • Establish standard operating procedures for embedding security-driven processes into the Software Development Life Cycle (SDLC)
  • Effectively and efficiently communicate and collaborate with external and internal customers to analyze and monitor a project’s security posture and status
  • Effectively following-up with key project team members
  • Engage with government customer on security matters
  • Organize, develop, and present security briefings, written summaries, and written reports incorporating narrative, tabular and/or graphic elements on security assessments, whitepapers relating to computer and network security technologies and tools.
  • Effectively and efficiently communicate and collaborate with external and internal stakeholders to ensure security is ‘built in’ the program

Qualifications

  • Bachelor’s Degree or higher in computer science, electronics engineering, or other engineering or technical discipline. An additional six (6) years of related experience may be substituted for education requirement
  • At least ten (10) years of related experience, including experience with:
    • Risk Management Framework
    • Application Software Security / threat modeling
    • Authorization Requirements Process for Federal Government
    • Information Assurance
    • FISMA and/ or FedRAMP requirements
    • Governance, Risk, and Compliance tools
  • Previous Government contracting work experience
  • Expert technical knowledge of risk management, and information security concepts and technologies
  • Experience with Cyber Security document management and familiarity with security and privacy rules
  • Experience working in the FedRAMP cloud environment understanding IaaS, PaaS, and SaaS in regard to cloud service provider security control responsibilities and customer responsibilities
  • Excellent verbal communication skills
  • Excellent written skills for preparing reports and briefings
  • Excellent analytical and problem-solving skills
  • Able to participate in a small team of Cyber Security Engineers and Analysts to provide deliverables and services to government client
  • Ability to facilitate and coordinate efforts with key government and non-government stakeholders
  • This position may support a government contract and have access to classified or government protected information for which US citizenship is required
PREFERRED/DESIRED SKILLS:
  • CISSP, CISSP-ISSEP, CAP, CCSP

EEO Statement

AbleVets LLC appreciates your interest in our company as a place of employment.  We are proud to be an equal opportunity/affirmative action employer and are committed to hiring and retaining a diverse workforce.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability, veteran status, or any other protected class.  AbleVets is a VEVRAA Federal Contractor. 

AbleVets develops technology solutions for the U.S. government, helping federal agencies improve citizens' access to quality care and services.

AbleVets Company Image


Back to top