Job Title: Senior Principal Cybersecurity Engineer
Job Location: Bridgeton MO 63044
Onsite Requirements:
- CISM or CASP
- Nessus OR Acas
- Security Clearance
Job Description:
- Our client is seeking a highly experienced Senior Principal Cybersecurity Engineer to collaborate with a team of engineers in driving cybersecurity initiatives for their tactical systems.
- You will play a key role in implementing and upholding robust tactical system-based Information Assurance (IA) initiatives, positioning our company at the forefront of tactical system cybersecurity.
- Your expertise will be essential in ensuring the confidentiality, integrity, and availability of our tactical systems and data.
Job Responsibilities:
- Policy & Strategy:Establish and implement robust cybersecurity policies and procedures, ensuring compliance across all tactical systems at DRS Land Systems. Provide strategic direction to enhance our tactical system cybersecurity posture
- RMF & A&A:Oversee the Information Assurance Assessment & Authorization (A&A) process for each of our government-focused programs at DRS Land Systems, including RMF implementation. Develop and validate A&A packages, ensuring adherence to DoD standards
- System Security:Evaluate tactical system architectures and designs, providing recommendations to meet security compliance objectives. Develop security-focused architecture deliverables for tactical systems
- Vulnerability Management:Establish processes to identify, track, and mitigate tactical system vulnerabilities. Collaborate with internal and external stakeholders on tactical system IA matters
- Threat Intelligence:Stay informed about evolving cyber threats and intelligence sources. Provide expert technical advice to tactical system engineering teams
- Compliance & Testing:Review vendor and consultant work packages to ensure alignment with our tactical system cybersecurity standards. Support tactical system IA testing and evaluation activities
- System Assessments:Conduct comprehensive cybersecurity assessments of Linux and Windows-based tactical systems, identifying vulnerabilities and recommending remediation strategies
- Cross-functional Collaboration:Coordinate with engineers from other disciplines to ensure seamless integration of cybersecurity measures into the design and development of tactical systems
- Attend appropriate engineering, customer, or business meetings
- Communicate clearly (written and oral) with manufacturing, supply chain, program management and the customer as required
- Interact with technical management, other professionals, technicians, and support personnel to coordinate, recommend, and confer regarding technical activities and progress
- Support, communicate, reinforce, and defend the mission, values, and culture of the organization
Qualifications:
- CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) certification
- Ability to obtain a Department of Defense (DoD) Secret Clearance is required
- Master's degree in Cybersecurity, Information Assurance, or a related field and/or an equivalent combination of education and experience
- 10+ years of experience in Information Systems Security, Information Assurance, or Security Engineering
- Deep understanding of DoD, US Federal, and NIST regulations and documentation
- Experience implementing and evaluating IA and RMF compliance
- Professional demeanor, strong interpersonal skills, and ability to thrive in a fast-paced environment
- Ability to work independently, prioritize tasks, and meet deadlines
- Excellent oral and written communication skills, including presentation abilities
- Advanced problem-solving and analytical skills
- Expertise in Linux and Windows operating systems
- Experience performing system-level cybersecurity assessments
- Experience developing System Security Plans (SSPs) and A&A documentation
- Experience with platform IT or air-gapped networks
- Willing to travel up to 10% as necessary
- GSLC (GIAC Security Leadership Certification) and GDSA (GIAC Defensible Security Architecture a plus
- Experience working with Security Classifications Guides (SCGs), DoD certification and accreditation programs, and IA assessments of classified systems a plus
