Job Information
Sev1Tech, Inc. Security and Compliance Engineer in Westminster, Colorado
Sev1tech, Inc.
Security and Compliance Engineer
US-CO-Westminster
Job ID: 2024-8048 Type: Full Time W/Benefits Ret Match
of Openings: 1
Westminster, CO
Overview
Sev1Tech is looking for a Cybersecurity Engineer to assist our clients with Risk Management Framework (RMF), NIST 800-171, ATO, and Cybersecurity Maturity Model Certification (CMMC) compliance and implementation * Taking a consultative approach, assist clients in defining and implementing cybersecurity policies and procedures * Work closely with client System Administrators with the identification of vulnerabilities on all customer server assets, including Windows, Unix, and Network devices * Assist admins with hardening of systems to comply with DISA Security Technical Implementation Guides (STIGs) * Ensure DISA STIG compliance, interpretation, and analysis of results as well as remediation * Assist in the Authority to Operate (ATO) support evaluating NIST controls in both a FISMA Moderate and High Environment * Perform system maintenance on security-related tools; evaluate, test, and integrate upgrades * Scan, patch, remediate, provide mitigation strategies, and document security vulnerabilities in operating systems and applications * Assist in defining and writing security policies to support FedRAMP, FISMA, Federal Compliance, NIST Compliance, HIPAA Compliance, ISO Standards, and SOX Compliance * Assist and lead security audits * Generate bi-weekly vulnerability reports to send out to customers * Assist in the operation and maintenance of an enterprise level Security Information and Event Management (SIEM) * Follow security policies and create/maintain existing information system security documentation * Assist in the development, design, and coding of new systems or components, and troubleshoot & debug problems occurring within existing platforms and resolve issues using enterprise level tools * Assist with the evaluation of threats and impact as identified by the government and/or security tools * Other duties as assigned Salary: $90K to $140K BOE
Responsibilities
- Bachelor s Degree in Cybersecurity, Computer Science, Systems Engineering, Information Technology or related field or experience equivalent with 5-7 years of relevant work experience.
- Experience working with Federal Government contracts
- Prior Security Consulting experience
- Experience leading Cybersecurity/Information Security audits
- Must have a thorough understanding of cyber threats, information security, and monitoring & detection using the latest monitoring tools.
- Minimum of 4 years experience working with security technologies including exposure to AWS/Azure cloud environments
- Cloud Security Experience - Amazon, cloud security tools
- Experience with authoring and maintaining security authorization documentation specific to FISMA and FedRAMP related controls at up to the High impact level
- Background with Risk Management Framework (RMF), ICD 503, NIST 800-171 with DFARS, NIST SP800-53 and 53a or DCID 6/3; knowledge of current authorization practices; Background with DITSCAP/DIACAP may be substituted in some cases.
- Strong experience with Microsoft 365 platform, including Outlook, SharePoint, and Microsoft Teams, etc.
- Experience with enterprise level security tools (SIEM and vulnerability scanning), specifically LogRhythm, Splunk, ElasticSearch
- Possess excellent oral and written communication skills and proven interpersonal skills
- Demonstrates ability to multi-task, internally driven to meet organizational goals with often quick deadlines.
- Must be a self-starter passionate about expanding their IT capabilities
- Multi-task in a team-oriented environment with the ability to manage concurrent objectives, take initiative and maintain client confidentiality with the ability to work independently
- SECRET Government Clearance
Qualifications
- Vendor and Security certifications
- Strong erbal and written communications skills, including creation of SOPs, maintenance plans, network drawings.
- Strong analytical abilities
- Must possess a strong client focus
- Experience with AWS networking and security architectures
Apply Here: https://www.click2apply.net/QyDZWjHJ7NBKdi8GJcgwQd
PI239316729