NOVA-Diné is in search of a Senior Cybersecurity Engineer to become a part of our Defense Enclave Services (DES) team located in Ft. Meade, MD. The DES program is a highly demanding mission and requires expert technical and professional management to support DISA's enterprise Information Technology (IT) services. You will be supporting a large and complex IT discovery, design, and migration effort towards a Single Service Provider model for the Department of Defense. This role will include discovery analysis and design activities required to migrate common IT services from multiple large-scale DoD agencies into DoDNet. *This will be a hybrid work schedule* 

• Discover and document cybersecurity solutions and related tools implementations in client environments to aid in service delivery and/or migration planning and architectures for clients.
  
• Evaluate applicable information assurance/security standards and procedures in client environments.
  
• Support Authorizing Official (AO) actions by collecting, reviewing, and evaluating information that includes supporting documents and artifacts in accordance with RMF as defined in NIST 800-37 revision 2 and related agency specific RMF requirements.
  
• Discover and document deployed cybersecurity solutions, processes, and procedures related to operation and maintenance of those solutions.
  
• Review and assess integration and implementation of Asset Management, Identity, Access Control Systems/Solutions, Compliance Monitoring and Remediation, Multi-Factor Authentication (MFA) and/or single sign-on (SSO) solutions in addition to other cybersecurity and/or cyber operations tools and solutions IAW DoDI 8520.02, DoDI 8520.03, and other applicable policies and regulations.
  
• Review and assess security architectures and designs and related engineering documentation.
  
• Perform gap analysis and use other analytic techniques to support recommendations regarding operations, maintenance, service delivery capability, and/or the migration feasibility of existing security architectures, designs, solutions and systems.
• Other duties as assigned. 

• Must have an active Secret clearance!
• Bachelor’s degree and 12+ years of related experience; additional relevant experience may be substituted for education.
• Must have DoD 8570 IAT III certification (CASP+).
  
• 8+ years hands-on experience designing or implementing security solutions, including all related documentation and artifacts.
  
• Analytical ability, problem-solving skills, and ability to break down complex problems into actionable steps.
  
• Extensive experience in design and deployment of enterprise security tools and supporting architectures. Experience must include a wide range of work in creating diagrams and documentation covering all components that comprise IT systems, including, but not limited to, network topology and related systems architecture.
  
• Strong knowledge and hands-on experience in secure enterprise architecture engineering and related operational support, with specializations in various combinations of tools and technologies within the following subset: Firewall/VPN, ACAS, HBSS, C2C, IAM, NDR, EDR, SIEM/SOAR, AI/ML, or other cybersecurity tools and resultant applications. Expertise with other cybersecurity solutions and tools will be also be considered, as appropriate.
  
• Experience selecting effective methods, techniques, and evaluation criteria to achieve desired outcomes.
  
• Experience developing solution designs, implementation plans, deployment plans, migration plans, and DR/COOP plans.
  
• Comprehension of federal cybersecurity guidance such as FISMA NIST SP 800-37 - Guide for Applying the Risk Management Framework to Federal Information Systems: A Security Life Cycle Approach and NIST 800-137 - Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations.
  
• Experience reviewing and/or developing detailed technical documentation, architectures, engineering diagrams, technical implementation plans, migration plans, cybersecurity vulnerability mitigation plans, roadmaps, and technical standards for the federal IT enterprise environment.
  
• Experience driving technical projects to completion and working with a multi-discipline, cross-functional team of professionals.

Nice to have: 

• Strong Systems and/or Network Security Engineering background.
  
• Experience building vulnerability scanning, endpoint security, network security, and SIEM/SOAR solutions in federal or large commercial enterprise environments.
  
• Strong technical project leadership skills.
  
• Additional certifications demonstrating cybersecurity/technical mastery.
  
• Certified Information Systems Security Professional (CISSP).

#NOVAjobsddc

This contractor and subcontractor shall abide by the requirements of 41 CFR 60–1.4(a), 60–300.5(a) and 60–741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.

#LI-DNP