Cyber Security Engineer (23-049)

CTI is seeking a highly skilled and motivated Cyber Security Engineer to join our team. As a Cyber Security Engineer, you will play a critical role in ensuring the security and integrity of our systems and data. You will work closely with cross-functional teams to design, implement, and maintain security measures, and to identify and mitigate vulnerabilities and risks. The Cyber Security Engineer will facilitate continual security effectiveness and compliance across the organization, ensuring that we are adhering to required policies.

Responsibilities:

• Design, implement, and maintain our organization's cybersecurity infrastructure
• Respond to security incidents
• Assists in the design, implementation, and maintenance of security plan, policies, procedures, and standards.
• Ensure compliance with NIST 800-171 standard
• Maintain SSP, POA&M lists, and schedules to ensure we are working toward compliance or mitigating issues as required
• Develop plan and documentation to achieve compliance with CMMC 2.0 Level 2
• Ensure security and integrity of corporate data, network access and systems
• Stay abreast of shifting cybersecurity landscape, including compliance requirements
• Audit systems and assess their outcomes
• In coordination with Systems Administrators maintain network perimeter, including firewalls, authentication and access control
• Monitor product sunset and vulnerability lists to ensure software we rely on or package is approved
• Maintain vulnerability scans using respected scan tools
• Review cloud architectures and system deployments for best practices and responsible security decision
• Research and identify best practices from other business units and industry to continually improve processes
• Work with the corporate FSO to ensure corporate security goals are met
• Identify and securely maintain corporate FCI and CUI data
• Assist in analyzing security vulnerabilities and risk, within the Risk Management Framework (RMF) guidance provided through the NISPOM and the JSIG, CMMC and NIST 800-171, and provide suitable options for identified issues
• Review alerts and data from systems and responds accordingly, including documentation and escalation
• Participate in product selection, vendor evaluations, and implementation of security technologies
• Recommend security enhancements to managemen
• Recommend and implement mitigating actions to contain incident related activity
• Design and develop information security training in coordination with Security and HR to be utilized for onboarding and annual training

In addition to cybersecurity responsibilities, this position will also fulfill IT Helpdesk and Systems Administration duties as needed, to include: Office 365 support, SharePoint support, laptop maintenance and troubleshooting, Azure AD management and maintenance.

Requirements

Necessary skills and experience

• Minimum 2 years of experience in information security.
• Previous experience as a Systems Administrator.
• Cyber Security Professional certification (Security+, GSEC, CASP, CISSP) or Cyber Security Professional training in lieu of.
• Experience with Microsoft Office 365 and government cloud.
• Experience with Single-Sign-On technologies, including SAML, OAuth and OpenID.
• Experience in common information security management frameworks, such as ISO, NIST 800-171, CMMC.
• The ability to obtain a US security clearance post-start date. U.S. Citizenship is required as only U.S. citizens are eligible for a security clearance.
• A High School diploma, bachelor’s degree in information technology is preferred.

Beneficial skills and experience

• Strong technical writing and documentation skills.
• Knowledge with web solutions, cloud-based solutions, AWS GovCloud, Microsoft Azure, network architectures, VPN/VPC configuration, cross platform (Mobile to cloud) application security, cross domain solution (CDS) implementations and compliance, and more.

Benefits

CTI is a rapidly growing company offering the following:

• Medical, dental and vision insurance
• H.S.A. (partially funded by CTI) and Flex Spending
• Company-paid life insurance/AD&D and disability insurance
• Optional supplemental life, critical illness, hospital indemnity and accident insurances
• Paid vacation, sick leave and holidays
• 401k plan with Safe Harbor contribution
• Tuition reimbursement/professional training options
• Employee Assistance Program
• Travel Assistance
• Financial Planning Assistance
• Voluntary Pre-Paid Legal
• Flexible schedules with telecommuting options
• Service awards program

CTI is an Equal Opportunity employer and shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.