Security Engineer – Assessor

ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Security Engineering Assessor who has experience providing Technical Assessments throughout the System Development Lifecycle (SDLC)/ System Engineering lifecycle (SELC) to ensure healthy security posture and effective compliance with federal requirements in the federal market. This is a unique opportunity to be involved with a broad range of technologies and to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

 

Roles and Responsibilities

  • Assess the security posture of new and emerging technology that is implemented or before being implemented to identify all risks and the security posture of Enterprise IT organization systems
  • Define and enforce policies and guidelines as outlined within NIST SP 800-53, DHS 4300A, DHS 4300B Sensitive Systems Policy
  • Research and provide guidance in the implementation of system specific features and security controls to ensure effective compliance with federal requirements
  • Provide IT security consultation and recommendations to system stakeholders to promote a strong security posture for systems
  • Conduct security assessments throughout the System Development Lifecycle (SDLC)/ System Engineering Lifecycle (SELC) through research, security documentation reviewes, and communication with system stakeholders

Required Skills

  • Proficiency
  • Strong understanding of the SDLC/ SELC lifecycles and the system security requirements required through each phase and at each gate
  • Expert knowledge of the NIST SP800-60 Risk Management Framework (RMF)
  • Expertise in security engineering and experience with conducting technical risk assessments for large and complex information systems that include a broad range of technologies
  • Proficiency in the application of NIST security controls guidance to Enterprise IT systems and applications
  • Strong technical understanding of IT system, services and application architectures including cloud
  • Excellent spoken and written communication skills, including the ability to speak clearly and distinctly, and to accurately summarize and describe information with correct, precise terminology
  • Ability to work cohesively with a team that includes Enterprise Architects, Security Analysists, and other Security Engineers

Education Requirement

  • Bachelors degree in related field

Years of Experience Requirement

  • 5+ years designing and implementing network, systems, and security solutions

Certification Requirement

  • Technical Certification (one or more of the following), CISSP, AWS, Azure, CCNP, MCSE

Location

  • Fairfax, VA

Security Clearance

  • Must be able to obtain DHS EOD
  • Must be able to obtain a security clearance issued by a Federal agency

Sound like the job for you?

Send us a link to your resumé or portfolio to become part of our talent pool.

Click here to apply

Warning: Invalid argument supplied for foreach() in /var/www/wp-includes/class-wp-list-util.php on line 157