MANTECH seeks a motivated, career and customer-oriented Staff Security Engineer to join our team in Chantilly, VA. You will support system security architecture and assurance by helping to implement robust cybersecurity frameworks, assess risk, and support system compliance activities. By leveraging your strong technical background, you will support the improvement and sustainment of mission-driven IT solutions that enable secure enterprise operations.
In this role, you will assist architects and system developers in identifying and implementing appropriate information security functionality to ensure consistent application of government security policy. You will perform and review technical security assessments of computing environments to identify vulnerabilities and recommend mitigation strategies. Furthermore, you will evaluate proposed software, hardware, firmware, and infrastructure, including DEVSECOPS, containerization, and zero-trust architectures, to ensure compliance with applicable security guidelines.
Responsibilities include but are not limited to:
Developing and providing Information Assurance (IA) updates and Assessment and Authorization (A&A) documentation while running Tenable scans and supporting Authority to Operate (ATO) renewals
Using Splunk to collect weekly CONMONs and updating Plans of Action & Milestones (POA&Ms) to ensure continuous monitoring compliance
Assessing and closing allocated controls with Bodies of Evidence (BOEs) and applying required Security Technical Implementation Guides (STIGs)
Working with network service providers to develop and maintain robust network architecture diagrams for cyber defense capabilities
Evaluating and recommending technology upgrades to support performance improvements and alignment with industry best practices
Monitoring and analyzing performance and faults while proposing solutions for system optimization and collaborating with stakeholders to coordinate technical information
Supporting A&A activities related to network security technologies and maintaining a robust library of required documentation
Minimum Qualifications:
Bachelor’s degree or 4+ years of additional work experience in lieu of a degree
2+ years of experience in IT and/or Cyber Security
IAT Level II certification or higher (Security+, Net+, etc.) or the ability to obtain certification within 6 months of hire
Experience creating, maintaining, and communicating complex information technology and security documentation
Experience providing ISSE support and working closely with ISSMs and ISSOs to integrate security controls and ensure compliance with RMF and NIST 800-53 standards
Experience identifying security requirements for the proper handling of Government data to ensure systems meet all requirements
Experience with technologies supporting large-scale enterprise deployments or data centers and inventorying complex networks
Preferred Qualifications:
Experience implementing and supporting complex, multi-component software solutions across a large team
Experience deploying enterprise security software including firewalls, intrusion prevention systems (IPS), and virtualization platforms
Knowledge of Windows and Linux systems, TCP/IP networking, 802.1x, and core network security principles
Experience with the Sponsor’s primary cyber risk and compliance automation tools
Clearance Requirements:
An active TS/SCI with polygraph is required for this position
Physical Requirements:
Must be able to remain in a stationary position 50%
Needs to occasionally move about inside the office to access file cabinets, office machinery, etc.
Frequently communicates with co-workers, management, and customers, which may involve delivering presentations
Must be able to exchange accurate information in these situations