Information System Security Engineer 1

Overview:

By Light Professional IT Services LLC readies warfighters and federal agencies with technology and systems engineered to connect, protect, and prepare individuals and teams for whatever comes next. Headquartered in McLean, VA, By Light supports defense, civilian, and commercial IT customers worldwide.

CESI also designs, builds and runs infrastructure, platforms, applications and processes that enable cyber training for the integrated multi-domain force. Our vision is to become a worldwide full spectrum LVCG and cyber training/analysis developer, integrator and services provider.

Responsibilities:

• Develop creative technical and procedural solutions to effectively secure information systems without introducing significant operational overhead.
• Perform technical implementation of security functionality to comply with NIST SP 800-53A controls and ensure the protection of computer systems, networks, and information.
• Validate security components are operating efficiently and are providing the expected insight into the information system through continuous monitoring
• Maintain the security posture of the information system through applying periodic DISA STIG configurations and vulnerability patch updates
• Perform self-assessments of information systems using manual and automated compliance tools in support of obtaining or maintaining a DoD RMF ATO.
• Propose justification and mitigating countermeasures to reduce or eliminate risk level of an identified vulnerability.
• Minimum 5 years of experience working in Information Security or general IT areas related to risk management, controls assurance, compliance programs, cybersecurity and information security industry standards.
• Systems administration skills, experience with security settings, services, hardening of systems (STIGs, security policies); any shell scripting a plus.
• Formal technical documentation skills.

Required Experience/Qualifications:

• Develop creative technical and procedural solutions to effectively secure information systems without introducing significant operational overhead.
• Perform technical implementation of security functionality to comply with NIST SP 800-53A controls and ensure the protection of computer systems, networks, and information.
• Validate security components are operating efficiently and are providing the expected insight into the information system through continuous monitoring
• Maintain the security posture of the information system through applying periodic DISA STIG configurations and vulnerability patch updates
• Perform self-assessments of information systems using manual and automated compliance tools in support of obtaining or maintaining a DoD RMF ATO.
• Propose justification and mitigating countermeasures to reduce or eliminate risk level of an identified vulnerability.
• Minimum 5 years of experience working in Information Security or general IT areas related to risk management, controls assurance, compliance programs, cybersecurity and information security industry standards.
• Systems administration skills, experience with security settings, services, hardening of systems (STIGs, security policies); any shell scripting a plus.
• Formal technical documentation skills.

Required Certifications:

• This position requires certifications necessary to meet IAT II in accordance with DoD 8570-01-M.
• One or more of the following certifications are required within 90 days of hire date.GSEC; Security+
• SSCP
• CCNA Security
• CEH

Preferred Experience/Qualifications:

• Experience securing and managing containerized environments, including Kubernetes clusters.
• Knowledge of security best practices or container orchestration platforms (e.g. Docker, Kubernetes)
• Experience with VMware products, including vSphere, vCenter, and ESXi.
• Knowledge of securing virtualized environments, including virtual machines patching and compliance.
• Experience working with Linux.

Special Requirements/Security Clearance:

In accordance with the specifications of a government contract, eligibility for this position mandates U.S. Citizenship status and a SECRET to TS/SCI security clearance. The precise security clearance requisites will be detailed in the Government's Task Order.