Cyber Security Engineer

Job Description

Verity was founded with a focus on providing advanced science and technology and business management services to commercial and government clients. Our team includes engineers and analysts with subject matter expertise in domains that span software development, simulation technologies, experimentation support tools, and systems analysis methodologies. Additionally, we have applied expertise in emerging threat evaluation, analysis, and simulation. These capabilities have been successfully applied to not only Science and Technology (S&T) programs but also major weapon system acquisition programs and gap-filling warfighter solutions.

Verity is seeking a Cyber Security Engineer to join our team. The Cyber Security Engineer is responsible for providing customers with guidance and assistance in the configuration, documentation, and authorization of their classified systems. The Cyber Security Engineer is also responsible for providing customers with guidance and assistance in ensuring compliance with CUI-related regulations (i.e., DFARS 252.204-7012, CMMC, etc.).

Duties and responsibilities

• Independently determine and develop approaches to information assurance solutions.
• Develop system documentation for information system authorization, security management, and continuous monitoring of both networked and standalone classified systems.
• Provide guidance for performing system auditing, vulnerability risk assessments, Assured File Transfers, hardware/software configuration management, system patching/updating, data integrity containments, and investigations on IA related security violations/incidents.
• Assist in the planning, organization, maintenance and compliance of multiple classified systems in accordance with NISPOM, Risk Management Framework (RMF) requirements, and Defense Counterintelligence and Security Agency (DCSA) Assessment & Authorization Process Manual (DAAPM).
• Responsible for the development of a comprehensive security plan for IT systems security.
• Maintain thorough understanding of NIST 800-53/800-171 controls, and determine which controls are applicable to the system/application, as well as document implementation.
• Develop policies and procedures to ensure compliance with applicable regulations.
• Ability to multitask multiple accreditations efforts.

Required:

• BS/MS degree (Computer Science, Math, Engineering, or Related Science degree)
• Active SECRET or TOP SECRET Clearance
• Must be a U.S. Citizen.
• 10+ years related experience
• Experience with National Industrial Security Program (NISP) Enterprise Mission Assurance Support Service (eMASS) submission and maintenance.
• Experience with implementation of Defense Federal Acquisition Regulations Supplement (DFARS) 252.204-7012 requirements.
• Knowledge of Cybersecurity Maturity Model Certification (CMMC) requirements.
• Knowledgeable of DCSA certification authority and familiar with the RMF accreditation process.
• Thorough understanding of US Government Cybersecurity/IA policies
• Experience with DCSA RMF processes.
• Must have the ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners.
• Working knowledge of Microsoft Office (Word, PowerPoint, and Excel).
• Exceptional communication skills
• Exceptional work history
• Ability to work independently and in a professional manner
• High degree of attention to detail
• Ability to multi-task and excel in a multi-customer environment.
• Must be able to lift up to 50 lbs.

Desired:

• Possess a high degree of originality, creativity, initiative requiring minimal supervision.
• Experience in a Department of Defense Information Security contractor security environment with demonstrated knowledge of classified Information System operating systems.
• Experience with security configurations across multiple operating systems in various environments.
• In-depth knowledge of National Institute of Standards and Technology (NIST) guidelines.
• Experience with the implementation of NIST 800-53 controls.
• In-depth knowledge of Security Technical Implementation Guides (STIGs) and their implementation.
• Experience with configuration and usage of Security Content Automation Protocol (SCAP) Compliance Checker (SCC).
• Experience with Windows Active Directory management and Group Policy implementation.
• Experience with Windows 10 management and hardening.
• Experience with Windows Server management and hardening.
• Experience with Unix/Linux management and hardening.
• Experience with the configuration and management of virtualization technologies.

Due to the nature of our business and the role, please note that VERITY and/or your customer(s) may require that you show current proof of vaccination against certain diseases including COVID-19. Details can vary by role.

Must be a U.S. citizen for consideration.

Verity Integrated Systems is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.