Back to search
Position Detail:
- Conducting technical security assessments and contribute to the security systems.
- Ensuring system security compliance, manage risks, and support certification activities throughout the program life cycle.
- Work with the application leads, sysadmins, DBAs, developers, and testers to ensure the assigned systems are security compliant and achieve/maintain ATO.
- Answering questions to ensure systems are developed with security compliance built in.
- Supporting security assessment events and respond to all questions from ISSMs and SCAs
- Developing and maintaining SSPs, POA&Ms, and other required security documentation using XACTA.
- Driving IATT and ATO efforts, coordinating with stakeholders, cyber, and Authorizing Official (AO).Implementing and validating NIST 800-53 controls in cloud-native DPaaS environments.
- Applying Zero Trust principles to secure data services, including identity, segmentation, and flow control.
- 13 Years of experience in Software or Systems Engineering roles or a highly related field of work with similar scope and responsibilities.
- A Bachelor’s degree may be substituted for 4 years of experience and a Master’s Degree may be substituted for 6 years of experience
- Active TS/SCI with active CI Polygraph clearance.
- Security+ or other IAT II/III level certification that is currently active.
- Proficiency with XACTA and DIA’s RMF process, including managing IATT and ATO processes.
- Proficiency with Splunk.
- Experience conducting assessments of existing IT architecture for compliance with security requirements from applicable security frameworks (such as ICD 503).
- Experience with implementing and maintaining system security documentation, including SSPs, SAPs, POA&Ms, and security assessment artifacts, coordinating closely with ISSMs, ISSEs, system owners, and authorizing officials.
- Full-time work in a Sensitive Compartmented Information Facility (SCIF) is required, with flexible hours.
- Prior Information System Security Officer or Information System Security Engineer experience
- Proven experience leading cybersecurity initiatives for significant programs, showcasing a comprehensive understanding of large-scale program requirements.
- Demonstrated success in team management, highlighting the ability to effectively guide and coordinate cybersecurity professionals.
- Strong background in communication, with a track record of effectively engaging with customer, program leads, leadership teams, and engineers to convey complex cybersecurity concepts and strategies.
- #CJ
The Red Arch Solutions pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Determination of official compensation or salary relies on several factors including, but not limited to, level of position, job responsibilities, geographic location, scope of relevant work experience, educational background, certifications, contract-specific affordability, organizational requirements, alignment with local internal equity as well as alignment with market data.
Red Arch Solutions Benefits Snapshot:
- 100% paid employee healthcare premiums. CareFirst Advantage Best in Class Benefits.
- HaloScripts Concierge prescription medication service
- Generous PTO.
- 10 % 401K 6% match vested day one and up to 4% profit sharing contribution.
- Annualized bonus compensation.
- Spot bonuses for hard work.
- Tuition reimbursement.
- 529 College Saving Plan.
- College Loan Pay Back Program.
- 11 Paid Federal Holidays
- Generous Referral Bonuses.
Red Arch Solutions provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.
Have more questions about Red Arch? Email us at Careers@RedArchSolutions.com
Learn more about this Employer on their Career Site
