Parsons Corporation Cybersecurity Cross Domain Solution Engineer in Colorado Springs, Colorado
Minimum Clearance Required to Start:
Parsons' growing Mission Solutions Team is seeking a sharp, hands-on Cybersecurity Engineer (CSE) to join our high performing team in Colorado Springs in an agile fast-based environment. The CSE will provide subject matter expertise (SME) inputs and recommendations to system engineering teams throughout the program's lifecycle from requirement generation, to architecture, design, implementation, test, and system sustainment. The CSE is also responsible for developing, updating, and/or maintaining program of record cybersecurity technical design.
The right candidate will participate in hands-on designing of secured systems architecture deployed to DoD on-premise and Cloud secured architectures, hands-on securing Development/Test/Deployment environments, hands-on System Security Engineering, and assisting Information Systems Security Manager/Officer (ISSM/ISSO) Services throughout the system Assessment and Authorization processes.
This position will support the cybersecurity engineering, test, and integration for Space Ground Systems. Initiatives will focus on the cybersecurity aspects of system design to robustly deal with cyber-related disruptions, minimizing misuse and malicious behavior, while supporting the warfighting operational tempo.
Responsible for the technical delivery and implementation of a CDS or the engineering of a new CDS
Assists in the installation of CDS software using automation tools such as Saltstack
Conduct security engineering to the assessments on various CDS and Controlled Interfaces per DoD and IC requirements for the purpose of obtaining approval to operate
Works closely with system designers, operators, as well as industry to design security into products, develop new standards, and highlight requirement gaps to deliver systems into a long term strategically strong configuration.
Works with customers and various agile engineering disciplines to analyze operational needs, decompose requirements, generate cybersecurity functional requirements, and supports the agile development of robust security posture for cloud and on-premise environments
Provide support to the Assessment and Authorization (A&A) Risk Management Framework (RMF) with processes established in DOD Instruction 8510.01 on all client managed Cross Domain Solutions (CDS), to ensure the valid and accurate review of all associated documentation
Accomplish risk assessments based on obtained Body of Evidence including risk, mitigations, recommendations for SAR's and POA&M's
Develops Security Test and Evaluation (ST&E) validation procedures, execute ST&E, and document results
Develops documentation, policy and procedures; Ports Protocols and Services Management (PPSM); system and network diagrams, descriptions, SOPs, review previous certification and accreditation documents; compile and generate RMF artifacts
Review program requirements, deliverables, and activities to determine adequacy of information security architecture, define needed risk reduction activities, and operational monitoring/defensive capabilities.
Design and conduct risk assessments to ensure fielded security capabilities are implemented properly and adequately provide resiliency against projected threats
Required Qualifications :
6+ years of relevant experience with a BS OR 10+ years of relevant experience with a AA/AS
Active DoD Secret security clearance
Hands-on experience in computer networking concepts and protocols, and network security methodologies
Hands-on design and implementation of enterprise security services
Applied experience developing, administering, and maintaining Cross Domain Solutions
Experience with Operating Systems Security/hardening, particularly RHEL or CenOS 5/6/7/8
Experience designing secure web service-based technologies such as XML, XSLTs, Schema Validation, SOAP, REST, and related messaging protocols
Proficient knowledge of National Cross Domain Strategy & Management Office (NCDSMO) baselined CDS and filtering applications
Knowledge of risk management processes (e.g., methods for assessing and mitigating risk)
Hands-on experience in information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption)
Experience in secure configuration management techniques. (e.g., Security Technical Implementation Guides (STIGs)
Hands-on experience in network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)
Ability to produce technical documentation
Desired Qualifications :
Current DoD 8570.01M IAT III level certification (i.e. CASP+CE, CCNP Security, CISA, CISSP, GCED, GCIH, CCSP)
Working knowledge of security and auditing cloud infrastructures such as Amazon Web Services, Microsoft Azure, Google Cloud Platform
Satellite ground systems or satellite command and control experience
Familiarity with Air Force Satellite Control Network (AFSCN) Mission scheduling.
This position pays a minimum annual salary of $92,200.00 and a maximum annual salary of $161,400.00.
Benefits for this position include: medical, dental, vision, paid time off, Employee Stock Ownership Plan (ESOP) and 401K.
Must be able to obtain, maintain and/or currently possess a security clearance.
The position may require a COVID vaccination or an approved accommodation/exemption for a disability/medical condition or religious belief as required by federal, state, provincial or local mandates or customer requirements.
Parsons is a digitally enabled solutions provider focused on the defense, security, and infrastructure markets. With nearly 75 years of experience, Parsons is uniquely qualified to deliver cyber/converged security, technology-based intellectual property, and other innovative services to federal, regional, and local government agencies, as well as to private industrial customers worldwide.
Parsons is an equal opportunity, drug-free employer committed to diversity in the workplace. Minority/Female/Disabled/Protected Veteran/LGBTQ+.
For more about Parsons, visit parsons.com and follow us on Facebook, Twitter, LinkedIn, and YouTube.