Aberdeen, MD, USA
icrunchdata Network
Parsons seeks an experienced Cyber Security Engineer to join an existing team supporting U.S. Army programs working out of Aberdeen Proving Ground, MD, Eatontown, NJ or our Colorado Springs, CO office and will be able to work remote 3-4 times/week. Responsibilities: Conducting independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within, or inherited by, the assigned project. Determining the overall effectiveness of the controls, based on criteria from NIST 800-53 and CNSSI 1253 security controls. Ensure compliance with Security Technical Implementation Guidance (STIG), Security Requirements Guides (SRGs). Leveraging automated testing tools and manual test methodologies to identify system vulnerabilities, noncompliance and mitigation strategies. Defining and deriving security design requirements (SDRs) from customer-provided guidance, documentation and from development team input. Qualifications: 5 years of related work experience Bachelor’s Degree in Computer Science, Systems Engineering, Mathematics from an accredited college or university Experience performing technical security assessment using tools, such as Retina, Nessus, or Assured Compliance Assessment Solution (ACAS). Use scan results to identify required patches, Security Content Automation Protocol (SCAP) configurations. Extensive experience and understanding of Linux Operating Systems Experienced in the development of custom plugins for ACAS Nessus tools using Nessus Attack Scripting Language (NASL) to run scans on custom Linux Distributions Experience writing security standards in SCAP format (OVAL XCCDF), compatible with OpenScap (OSCAP) Experience conducting cyber security audits and risk assessments to ensure appropriate implementation and compliance with security requirements Experience in generating documents and implementing DoD RMF Controls and artifacts. Preferred/Desired Skills: Able to train others on use of OVAL/OSCAP and NASL development Experience with performing manual testing methods and procedures employing manual STIGs configurations, SRGs testing, and security checklists Executes the testing and debugging custom plugins and scripts. Documents the script, captures results from testing, resolves issues discovered during testing. Experience with shell scripting Experience with the Agile Development Process Experience with Atlassian suite of tools (Confluence, Jira, BitBucket, etc.) Must be able to obtain, maintain and/or currently possess a security clearance. Ready for action? We’re looking for the kind of people who see this opportunity and don’t hesitate to act. Parsons is a leader in the world of Technical Services and Engineering. We hire people with a broad set of technical skills who have proven experience tackling some of the greatest challenges. Take your next step and apply today. Job Requirements: