Cybersecurity Engineer

Nakupuna Consulting seeks a Cybersecurity Engineer who will be responsible for maintaining and enhancing the cybersecurity posture for our Department of Defense (DoD) customer(s) by managing vulnerabilities, monitoring endpoint protection, supporting account management, and ensuring comprehensive reporting of the customer's cybersecurity stance. The candidate will work on a team of several other Cybersecurity Engineers, both civilian and contractor. The ideal candidate is familiar with Agile project methodologies, is able to work with geographically dispersed workforce, and is comfortable communicating with a variety of IT professionals including technicians, users, and executive level stakeholders. This position demands a thorough understanding of security protocols, threat mitigation strategies, and compliance requirements, while collaborating with technical teams and stakeholders to ensure optimal security across all levels of the organization. The candidate should be concise, and value driven.

The following reflects management's definition of essential functions for this job but does not restrict the tasks that may be assigned. Management may assign additional duties and responsibilities to this job at any time due to reasonable accommodation or other reasons.

Ensure compliance of security configurations for Information Technology (IT) systems and aid in providing clear and concise processes and procedures for the implementation and enforcement of system security configurations.
• Provide daily operational support of endpoint security and data loss prevention to ensure monitoring, detection, and countering against known cyber-threats utilizing standard and tailored Trellix Endpoint Security System (ESS).
• Provide daily operational support to the Information Assurance Vulnerability Management (IAVM) to ensure detection, mitigation, and reporting of vulnerabilities via the Assured Compliance Assessment Solution (ACAS).
• Provie daily operational support for processing new or modified IS account requests. Coordinate and document approval of System Authorization Access Request (SAAR) forms to include confirmation of background checks, requisite training, and staff approvals.
• Ensure ACAS and Trellix are reporting current security posture to Continuous Monitoring and Risk Scoring (CMRS) for visibility.
• Perform penetration testing, analyzing systems for Security Technical Implementation Guide (STIG) compliance.
• Support preparation and readiness for Cybersecurity Assessments (such as CORA).
• Asess, report against, and maintain customer's cyber readiness.
• Generate and maintains Risk Management Framework (RMF) workflows within and outside Enterprise Mission Assurance Support Service (eMASS).
• Collaborate with IT teams to ensure that security measures are integrated into new and existing systems.
• Stay up to date with the latest cybersecurity trends, tools, technologies, and regulatory requirements.

Skills/Qualifications: Excellent technical, organizational, decision-making, analytical, and planning skills. Effective communicator who takes initiative and the ability to adapt to dynamic environments. In addition, the following technical skills are needed:

• Understanding of information security policies, frameworks, and regulatory requirements.
• Strong knowledge of vulnerability management, endpoint security, and data loss prevention practices.
• Familiarity with account management processes and access approval workflows.
• Experience with DoD standard security tools and technologies.
• Knowledge of cloud computing environments such as Amazon Web Services (AWS) and associated security challenges.

Please note: because this role requires frequent interaction with executive level customers, please expect a business-formal dress code.

Education and Experience: Bachelor's degree in a technical major from an accredited institution as well as a minimum of (2) two years of relevant professional experience. Equivalent years of related work or military experience in lieu of degree will also be considered.

Certifications:

• Required:
  • Active IAT II Certification which may include SecurityX formerly known as CompTIA Advanced Security Practitioner (CASP+)
• Nice to have:
  • ESS 201 Administrator and ESS 301 Advanced Administrator certification.
  • IAT III Certification
  • Other Cybersecurity related certifications

Clearance: Must currently hold at least an active Top Secret level of security clearance with SCI eligibility. Must be a U.S. Citizen.

Work Locations: This opportunity is located in Arlington, VA, and requires 3 days on-site with a hybrid option. Candidate will travel to Honolulu, HI or the Continental United States (US) for work approximately one week per year. This position may require working outside of normal business hours, including evenings and weekends, to meet occasional operational or project demands.

Note: Will also consider candidates with Secret clearance in Honolulu HI. Same in-office requirements apply.

Physical Requirements: The ideal candidate must at a minimum be able to meet the following physical requirements of the job with or without a reasonable accommodation:

• Ability to perform repetitive motions with the hands, wrists, and fingers.
• Ability to engage in and follow audible communications in emergency situations.
• Ability to sit for prolonged periods at a desk and working on a computer.

The Nakupuna Companies use a market-based compensation strategy to ensure that our employees are compensated within applicable market ranges commensurate with multiple factors, including but not limited to the individual's particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, organizational requirements, and position location. The projected compensation range for this position is $75,000.00 to $112,000.00 (annualized USD). The salary range displayed represents the typical salary range for this position and is just one component of Nakupuna Companies total compensation package for employees.