Overview:
Cybersecurity Systems Engineer (ISSE)
Herndon, VA
TS/SCI with Poly
Bridge Core provides high energy, unified teams; technology integration experience; and innovative approaches, to enable our clients’ mission. We enable our clients’ mission by integrating innovative technologies and implementing adoption processes that modernize the digital workplace. Our trusted, skilled, and diverse team members are making a lasting impact by building tailored, client focused solutions.
Do you want to join a team that is building tailored technical solutions to modernize our government’s mission and our client’s business? Do you have a desire to change how people work? Are you interested in helping to protect our nation’s cyber interests? Join our growing team supporting the government agencies in its mission as a Cybersecurity Systems Engineer (ISSE) in Herndon, Virginia.
Qualifications:
Required Qualifications:
- 11 years relevant experience
- Possess multi-tasking skills, be able to handle multiple A&A systems / projects simultaneously, as well as being a good communicator / facilitator. Comfortable communicating at all levels from developer / engineer to senior contractor / customer staff
- Knowledge of complex network environments involving shared networks and multiple security enclaves
- Possess the ability to bridge the technical implementation (i.e. engineering talk) into commonly understood security verbiage. Often this is a skillset and is not an actual language, frequent translation or a basic understand needs to be conveyed by the ISSE when speaking with others or when communicating in writing in order to ensure it’s easy to understand at all levels.
- Document the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation for the various Assessment and Authorization (A&A) efforts
- Document and obtain a general understanding of the architecture being developed or that was developed for each project in order to write the Systems Security Plans (SSP) / CONOPS
- Gather the information by working with various systems owners, project managers, and engineering team members in order to write various additional A&A related documents such as Contingency Plan (CP), General User Guide (GUG), Privileged User Guide (PUG), Standard Operating Procedures (SOP’s), etc.
- Support Accreditation and Authorization (A&A) reviews by Group level ISSMs and Security Controls Assessors (SCA)
- Document the Plans of Actions and Milestones (POA&Ms) implementation responses or mitigations, as well as provide all required artifacts (i.e. evidence gathering from the system owners, PMs, and engineering teams)
- Coordinating with various contractor and customer personnel to obtain the A&A content, as well as working with various customer security organizations to navigate the customer’s A&A process in order to achieve Authority to Develop (ATD), Interim Authority to Operation (IATT), and Authority to Operate (ATO) for each of the primary and secondary assigned systems
- Keep track of where each of the various A&A projects are within the customer’s A&A process and be able to fluently discuss the status at all levels
- Provide appropriate support for ATO'ed systems that are in continuous monitoring
Desired Qualifications:
- Previous ISSE experience directly supporting the customer
- Various security tools and reports such as GreenLight, Xacta, RoadRunner, Illuminate, Rapid 7, NMAP, WebInspect, App Detective, and Splunk
- Public, private and hybrid Cloud experience (AWS, Microsoft Azure, etc.)
- Basic knowledge is helpful, but not required for the following general topics: Cloud security control implementation, PKI implementation, STIG compliance and vulnerability management, and Security, Development and Operations (SecDevOps)
- CISSP or GSLC certifications
- AWS Certified Security Specialty
Microsoft Office products at the expert level (Word, Excel, PowerPoint)
What you can expect from us:
Bridge Core is proud to be an equal opportunity workplace and affirmative action employer. We celebrate diversity and are committed to creating an inclusive environment for all team members and applicants. At Bridge Core, we ensure fair treatment for our team members and applicants based on their abilities, achievements and experience without regard to race, national origin, sex, age, disability, veteran status, sexual orientation, gender identity or any other classification protected by law.
Bridge Core does not have a vaccination mandate applicable to team members. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements. Regardless of vaccination status , personnel are required to wear masks while indoors when the CDC COVID-19 Community Level is High.