MANTECH seeks a motivated, career and customer-oriented Cybersecurity System Security Engineer II to join our team in Colorado Springs, CO.
The Cybersecurity System Security Engineer II’s primary function is working within Special Access Programs (SAPs) supporting SSC and AFSPC acquisition programs. The position will provide “day-to-day” support for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities to meet NIST Cybersecurity requirements for system assessment & authorization.
Responsibilities include but are not limited to:
Serve as the RMF Cybersecurity Specialist for the organization's Systems, and maintain Day-to-Day security analysis of RMF packages to ensure timely updates and notifications.
Update RMF Security Control Families as required and properly process through eMASS.
Maintain thorough understating of NIST 800-53 and NIST 800-171 controls and determine which controls are applicable to the application, as well as document implementation in Security Controls Tractability Matrix.
Provide support and recommendations to Program Managers and Security Authorities to maintain appropriate information assurance (IA) posture(s) for programs and systems.
Conduct reviews to identify and mitigate potential security weaknesses and ensure that all security features applied to a system are implemented and functional.
Monitor and resolve Plan of Action and Milestones (POA&M) to mitigate system vulnerabilities on assigned Information Systems.
Draft and/or prepare and maintain security Assessment and Authorization documentation (e.g. IA SOP, SSP, MSSP, RAR and SCTM)
Perform oversight of the development, implementation and evaluation of information system security program policy; special emphasis placed upon integration with existing SAP network infrastructures.
Develop and provide IA risk management recommendations to the customer and represent the Government Program Manager in various SSE related working groups, advisory groups, and advisory council meetings.
Minimum Qualifications:
Bachelor’s degree in a related field or an additional 4 years of direct experience will be considered in lieu of degree.
6+ years of experience with Cybersecurity Systems Engineering.
4+ years of experience working in a SCI environment.
Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level 1 and Information Assurance Manager Level 2 within 6 months of the date of hire.
Full understanding of Risk Management Framework (RMF) and Joint SAP Implementation Guide (JSIG) processes for system accreditation, along with legacy (DITSCAP, DIACAP) processes
Preferred Qualifications:
2+ years of SAP relevant experience highly desired.
Must be familiar with security policy/manuals and the appropriate ICDs/JAFANs/DOD Manuals and other guiding policy documents.
Experience with DoD or military/civilian personnel environment.
Working knowledge of Microsoft Office (Word, PowerPoint, and Excel)
Clearance Requirements:
Current Top Secret Clearance with SCI Eligibility.
Eligibility for access to Special Access Program Information.
Willingness to submit to a polygraph.
Physical Requirements:
Must be able to remain in a stationary position 50%.
Needs to occasionally move about inside the office to access file cabinets, office machinery, etc.
Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer.
Frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.