Parsons Corporation Jobs

Mobile Parsons Logo

Job Information

Parsons Corporation Cybersecurity Engineer (CSE) in Colorado Springs, Colorado

Minimum Clearance Required to Start:

Not Applicable/None

Job Description:

Minimum Clearance Required to Start:

Not required to start, but must have the ability to acquire clearance up to TS/SCI.

Ready for a challenge that will require the culmination of your experience and keep you on the edge of cyber security? Take your Systems experience and help lead teams that protect privacy and ensure security for our national defense systems. Parsons is now hiring experienced Systems Specialists with a passion for cyber security.

MAJOR FUNCTION:

We are seeking a hands-on technical Cybersecurity Engineer (CSE) with a 'can do' attitude to join our high performing team in Colorado Springs in an agile fast-based environment. The CSE will provide subject matter expertise (SME) inputs and recommendations to system engineering teams throughout the program's lifecycle from requirement generation, to architecture, design, implementation, test, and system sustainment. The CSE is also responsible for developing, updating, and/or maintaining program of record cybersecurity technical designs and documentation artifacts in support of Risk Management Framework (RMF) authorization packages.

The right candidate will participate in hands-on designing of secured systems architecture deployed as DoD on-premise / cloud secured architectures, securing Development/Test/Deployment environments, System Security Engineering, and assisting Information Systems Security Manager/Officer (ISSM/ISSO) Services throughout the system Assessment and Authorization processes.

This position will support the cybersecurity engineering, test, and integration for Space Ground Systems. Initiatives will focus on the cybersecurity aspects of system design to robustly deal with cyber-related disruptions, minimizing misuse and malicious behavior, while supporting the warfighting operational tempo.

Responsibilities

  • Works with customers and various agile engineering disciplines to analyze operational needs, decompose requirements, generate cybersecurity functional requirements, and supports the agile development of robust security posture focusing on mission versus mere compliance.

  • Coordinates requirements with various agile teams to ensure appropriate security requirements are met across cloud and on-prem environments and validates developed solutions.

  • Works closely with system designers, operators, as well as industry to design security into products, develop new standards, and highlight requirement gaps to deliver systems into a long term strategically strong configuration while maintaining required compliance.

  • Conducts threat analysis of systems.

  • Evaluates the effectiveness of methods used to safeguard systems, devices, procedures, and data.

  • Develops documentation, policy and procedures such as: Ports Protocols and Services Management (PPSM) worksheets, system and network diagrams / descriptions, SOPs,

  • Reviews previous assessment and authorization (A&A) documents and compiles / generates RMF artifacts (ST&E results, etc.)

  • Provides system security engineering in accordance with the process, task, and activity guidelines established in DOD Instruction 8510.01 Risk Management Framework (RMF) for DoD Information Technology (IT)

  • Reviews program requirements, deliverables and activities to: determine adequacy of information security architecture, define needed risk reduction activities, and operational monitoring/defensive capabilities.

  • Implements cybersecurity and DoD RMF activities to integrate needed security capabilities across cloud and on-prem deployments.

  • Designs and conducts risk assessments to ensure fielded security capabilities are implemented properly and adequately provide resiliency against projected threats.

Required Education and Experience

  • 8+ years of relevant experience

  • Bachelors degree in technical field

Required Skills/Abilities - Competencies

  • Security+ (or higher IAT / IAM DoDM 8570.01 certification)

  • Broad knowledge of computer networking concepts and protocols, and network security methodologies

  • Knowledge of risk management processes (e.g., methods for assessing and mitigating risk)

  • Hands-on experience in conducting cyber threat analysis

  • Hands-on experience in developing Security Test and Evaluation (ST&E) validation procedures, executing ST&E, and documenting results

  • Broad knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption)

  • Hands-on experience in network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML)

  • Hands-on experience in reviewing and implementing secure configuration management techniques. (e.g., Security Technical Implementation Guides (STIGs))

  • Broad knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)

  • Practical experience in guiding systems through NIST SP 800-37 RMF steps, from Prepare to Monitor, using CNSSI 1253 to ascertain appropriate Confidentiality, Integrity, and Availability levels, and the NIST SP 800-53 controls associated with each level

  • Strong ability to produce and maintain varied technical documentation

Preferred Experience and Qualifications

  • Current professional cybersecurity certification such as Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or Global Information Assurance Certification (GIAC)

  • Working knowledge of security and auditing cloud infrastructures such as Amazon Web Services, Microsoft Azure, Google Cloud Platform

  • Fuzz testing, penetration testing, and/or static code analysis tools experience

  • Satellite ground systems or satellite command and control experience

  • Familiarity with Satellite Control Network (SCN) Mission scheduling

The anticipated annualized full time target compensation (median) for this position is: $166,000.00.Benefits for this position include: medical, dental, vision, paid time off, Employee Stock Ownership Plan (ESOP) and 401K.

The position may require a COVID vaccination or an approved accommodation/exemption for a disability/medical condition or religious belief as required by federal, state, provincial or local mandates or customer requirements.

Parsons is an equal opportunity, drug-free employer committed to diversity in the workplace. Minority/Female/Disabled/Protected Veteran/LGBTQ+. All qualified applicants will receive consideration for employment without regard to an individual’s race, color, religion, national origin, ethnicity, union affiliation, age, sex, sexual orientation, gender identity and expression, pregnancy, employable physical or mental disability, veteran status, genetic information, immigration status, or any other basis protected by all applicable laws.

DirectEmployers