Cyber Security Engineer

Minimum of 8 years with BS/BA; Minimum of 6 years with MS/MA; Minimum of 3 years with PhD, in lieu of degree 12 years of related work experience

What you'll need:

• Active IAM III Certification (including CISSP, CISM, GSLC)
• TESA eligibility & active U.S. passport
• Active DoD Secret Clearance
• Extensive knowledge of the RMF (Risk Management Framework) process

Desired qualifications:

• Knowledge of Commercial Solution for Classified (CSfC) Assessment and Authorization process
• Working knowledge of: ACAS, ESS, Carbon Black, eMASSKnowledge of DISA CAL (Defense Information Systems Agency Cyber Asset Library)
• Experience with DISA reviews, specifically:A&A (Assessment and Authorization)CCRI (Command Cyber Readiness Inspection)CORA (Cyber Operational Readiness Assessment)

We are hiring a Cyber Security Engineer for our program in Stuttgart, Germany.

What you'll do:

This role requires a broad range of cybersecurity skills and knowledge, covering both technical and strategic aspects of information security. The person in this position would play a crucial role in protecting an organization's digital assets and ensuring the overall security of its IT infrastructure. This position is specifically tailored to support the U.S. European Command (EUCOM) Headquarters' cybersecurity needs.

• The role will support U.S. government networks and Mission Partner
• The cybersecurity professional will be responsible for system security posture assessment, authorization process execution, continuous monitoring
• Assessing information security controls on new and existing systems
• Working with system owners to resolve and mitigate security findings
• Helping maintains the security posture of systems and networks
• The role involves collaboration with EUCOM personnel.
• Creating and maintaining Authorization packages to keep Authority to Operate (ATO) for multiple networks of varying classification levels.
• Ensuring System Administrators maintain required DoD 8140 certifications, Reviewing and providing recommendations to the Information System Security Manager (ISSM) regarding Hardware, Software, and Ports, Protocols, and Services (PPS) requests.
• Reviewing Plans of Action and Milestones (POA&Ms) for closure or extensions based on mission requirements.
• Reviewing Authorizing Official (AO) Risk Acceptance requests for validity and working with requestors on mitigations.
• Coordinating with the Defense Information Systems Agency (DISA) Security Control Assessor (SCA) for Authorization & Assessment reviews.