Cyber Security Engineer | Architect

  • Ishpi Information Technologies
  • Bethesda, MD, USA
  • Nov 09, 2020
[Information Technology]

Job Description

ISHPI is a recognized industry leader in providing Cybersecurity support and consulting services to our Federal agency and Department of Defense partners. In this, we specialize in developing and performing Cybersecurity Engineering and Operations processes and activities to ensure systems and services achieve and maintain adequate levels of compliance and operational security posture throughout all phases of their lifecycle.This opportunity requires multiple areas of expertise, so a diverse cyber workforce is in need. Areas of responsibility include: Cyber Operations support to include Information system vulnerability management, and threat Analysis. These tasks include system vulnerability and STIG assessments as well as penetration testing tasks.Risk Management Framework (RMF) and System Security Assessment and Authorization (SA) services for cloud-based and on premise systems. SA activities includes SAP construction and execution as well as creation and management of final Security Assessment Reports, supporting artifacts and Plan of Actions and Milestones. Information System Continuous Monitoring task support in the completion of FISMA and agency required Continuous Monitoring (ISCM) tasks. These tasks include completion of security assessments of proposed system changes, Contingency Plan Tests and reviews, annual security control assessments, providing responses to agency data-calls and IAVM tasks, and others as required.Security Architecture and Engineering Support services in the development, sustainment and improvement of information systems and services. This includes working within system engineers throughout the development lifecycle to ensure cybersecurity requirements are identified early-on and incorporated into the systems prior to deployment. It also involves solution development and deployment to address deficiencies in post-deployment baselines identified during system security assessments or during normal daily operations.User awareness training, Cybersecurity Policy, and project administrative and management support services.Subject matter expert level knowledge Federal Information Assurance and Cybersecurity policies, procedures and practices including NIST SP 800-53 and 800-37.Subject matter expert level knowledge of Cyber Security, Information Technology, network design architectures and operational environments (e.g., on premise enclaves, cloud, etc.),Bachelors degree with 6+ years minimum relevant cybersecurity experience.Familiarity with Pentesting and assessment tools such as Metasploit, Burp, Nessus, Kali Linux Tool Suite, IDA Pro, Core Impact, Tenable Security Center, NCC Auditor, HP WebInspect etc.Working knowledge in the implementation and assessment of DOD STIG and SRGWorking knowledge of DoD approved Vulnerability Management and Assessment tools (HBSS, ACAS, SIEM, products)Certification Requirement(s): GPEN, OSCP, GWAPT, LPT or equivalent certificationsActive Secret Security ClearanceIshpi Information Technologies, Inc. is an Equal Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, disability, or status as a protected veteran.*cjJob ID: 2020-1135 External Company URL: