Fellow Cyber Security Engineer at Cubic Corporation in Orlando, FL
Cubic offers an opportunity to provide innovative technology for government and commercial customers around the globe, helping to solve their future problems today. We're the leading integrator of payment and information technology and services for intelligent travel solutions worldwide, and the leading provider of realistic combat training systems, secure communications and networking and highly specialized support services for military and security forces of the U.S. and allied nations. If you have an entrepreneurial spirit and thrive in an innovative environment, we want to talk to you about your next role at Cubic! We are seeking employees inspired by technology, and motivated by the rewards of hard work, commitment, teamwork, quality, integrity, and respect. We invite you to explore opportunities with Cubic. Job Details:
Job
Summary:
The Principal Cyber Security Engineer provides leadership, team coordination, and subject matter expertise in the provision of Information Assurance (IA) and Cybersecurity (CS) support for certification and accreditation (C&A) of risk management framework (RMF) accreditation package and artifact generation. The primary function of this role includes requirements analysis, Security Test and Evaluation (ST&E) plans and execution, risk assessments, systems analysis and hardening, incident response and policy analysis, trusted product evaluations, IA program assessments, and security posture presentations. Expected to provide analytical support for the development and submission of C&A documentation in compliance with RMF requirements. Ability to apply expertise in technology, analyze the security implications of systems and applications security, and provide recommendations to decision makers and engineers. This position typically works under limited supervision and direction. Essential Job Duties and
Responsibilities:
Administer computing devices/systems that enforce security policies and audit controls in Windows, Linux and CIsco environments Assist in responses to external audits, penetration tests and vulnerability assessments Support DevSecOps developments (JIRA, bitbucket, Jenkins and SAST) Participate in the application of fixes, patches and disaster recovery procedures in the event of a security breach Track, assess, and validate Information Assurance Vulnerability Management (IAVMs), Secure Technical Information Guidelines (STIGs), and new policies as necessary Support updates to documentation, Vulnerability Management System (VMS), Enterprise Mission Assurance Support Service (eMASS), Xacta IA Manager when required Understand and Implement policies, standards, laws, and regulations regarding technical aspects with respect to Information Security Support requirements to re-accredit DoD Information Technology and Platform Systems Participate in continuous process improvement efforts Familiarity with application and network security Must be able to perform hands-on support for a wide range of security technologies including, but not limited to:
SEIM, IDS/IPS, HIDS, malware analysis and protection, content filtering, logical access controls, identity and access management, data loss prevention, content filtering technologies, application firewalls, vulnerability scanners, LDAP, forensics software and security incident response Minimum Job Requirements:
Four year college degree in Computer Science or related field plus a minimum of five years of related experience including three years in a system administration (e.g., Network, Windows) role and three years in information security. Must have experience working with compliance and regulatory program requirements. Incumbent must have experience analyzing network, event and security logs, and/or IDS alert logs. Incumbent will have proven organizational skills, specifically managing multiple tasks. Excellent analytical, problem solving and decision making skills, applied with a solution-focused attitude are required. Excellent written communication skills, demonstrating the ability to write with purpose, clarity, and accuracy are expected. Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance and professionalism are required. Incumbent must have excellent teamwork skills. Required experience with DevSecOps. The following certificates are required:
CISSP or CompTIA CASP. Though not required, any of the following licenses or certificates is preferred:
CISA, CEH, CSSLP, CHFI, CCSP, GCIH, GCIA, PMP, ITIL v3.
Salary Range:
$100K -- $150K
Minimum Qualification
System & Network Administration, IT SecurityEstimated Salary: $20 to $28 per hour based on qualifications.
Job
Summary:
The Principal Cyber Security Engineer provides leadership, team coordination, and subject matter expertise in the provision of Information Assurance (IA) and Cybersecurity (CS) support for certification and accreditation (C&A) of risk management framework (RMF) accreditation package and artifact generation. The primary function of this role includes requirements analysis, Security Test and Evaluation (ST&E) plans and execution, risk assessments, systems analysis and hardening, incident response and policy analysis, trusted product evaluations, IA program assessments, and security posture presentations. Expected to provide analytical support for the development and submission of C&A documentation in compliance with RMF requirements. Ability to apply expertise in technology, analyze the security implications of systems and applications security, and provide recommendations to decision makers and engineers. This position typically works under limited supervision and direction. Essential Job Duties and
Responsibilities:
Administer computing devices/systems that enforce security policies and audit controls in Windows, Linux and CIsco environments Assist in responses to external audits, penetration tests and vulnerability assessments Support DevSecOps developments (JIRA, bitbucket, Jenkins and SAST) Participate in the application of fixes, patches and disaster recovery procedures in the event of a security breach Track, assess, and validate Information Assurance Vulnerability Management (IAVMs), Secure Technical Information Guidelines (STIGs), and new policies as necessary Support updates to documentation, Vulnerability Management System (VMS), Enterprise Mission Assurance Support Service (eMASS), Xacta IA Manager when required Understand and Implement policies, standards, laws, and regulations regarding technical aspects with respect to Information Security Support requirements to re-accredit DoD Information Technology and Platform Systems Participate in continuous process improvement efforts Familiarity with application and network security Must be able to perform hands-on support for a wide range of security technologies including, but not limited to:
SEIM, IDS/IPS, HIDS, malware analysis and protection, content filtering, logical access controls, identity and access management, data loss prevention, content filtering technologies, application firewalls, vulnerability scanners, LDAP, forensics software and security incident response Minimum Job Requirements:
Four year college degree in Computer Science or related field plus a minimum of five years of related experience including three years in a system administration (e.g., Network, Windows) role and three years in information security. Must have experience working with compliance and regulatory program requirements. Incumbent must have experience analyzing network, event and security logs, and/or IDS alert logs. Incumbent will have proven organizational skills, specifically managing multiple tasks. Excellent analytical, problem solving and decision making skills, applied with a solution-focused attitude are required. Excellent written communication skills, demonstrating the ability to write with purpose, clarity, and accuracy are expected. Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance and professionalism are required. Incumbent must have excellent teamwork skills. Required experience with DevSecOps. The following certificates are required:
CISSP or CompTIA CASP. Though not required, any of the following licenses or certificates is preferred:
CISA, CEH, CSSLP, CHFI, CCSP, GCIH, GCIA, PMP, ITIL v3.
Salary Range:
$100K -- $150K
Minimum Qualification
System & Network Administration, IT SecurityEstimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
