A&A Mid-Level Cybersecurity Engineer (REMOTE)

Koniag Data Solutions, a Koniag Government Services company, is seeking A&A Mid-Level Cybersecurity Engineer to support KDS and our government customer in Alexandria, VA. This is a remote opportunity.

We offer competitive compensation and an extraordinary benefits package including health, dental and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more.

Koniag Data Solutions (KDS), a Koniag Government Services company, is seeking a Mid-Level Assessment & Authorization (A&A) Cybersecurity Engineer to support the security compliance and authorization processes for our federal government clients. The ideal candidate will have demonstrated experience with RMF, FISMA, and federal security compliance requirements, and be ready to grow into a more senior role.

Essential Functions, Responsibilities & Duties may include but are not limited to:

• The A&A Mid-Level Cybersecurity Engineer will support the security assessment and authorization process for information systems. Key responsibilities include:
• Assist in developing and maintaining security authorization packages
• Support security control assessments and documentation
• Help prepare and maintain System Security Plans (SSP)
• Track and update Plans of Action and Milestones (POA&M)
• Participate in security impact analyses for system changes
• Support the implementation of security controls
• Assist in conducting vulnerability assessments
• Document security assessment results
• Support continuous monitoring activities
• Collaborate with security teams and system owners
• Assist in policy and procedure development
• Help prepare security assessment reports
• Participate in security working groups

Education and Experience:
Required:

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
• 4+ years of experience in cybersecurity with focus on A&A processes
• 2+ years of direct experience with RMF and FISMA compliance
• Current Security+ certification, or other relevant certifications

Required Skills and Competencies:

• Strong knowledge of NIST Risk Management Framework (RMF)
• Understanding of FISMA requirements and NIST standards
• Experience with security control assessments
• Ability to develop and maintain authorization documentation
• Knowledge of security control catalogs (NIST 800-53)
• Familiarity with security assessment and authorization tools
• Good technical writing skills
• Analytical and problem-solving abilities
• Understanding of common security tools and technologies
• Experience with vulnerability scanning tools
• Basic risk assessment capabilities
• Strong attention to detail
• Ability to work effectively in a team environment

Desired Skills and Competencies:

• Additional security certifications (CASP+, CISSP Associate)
• Experience with classified systems
• Knowledge of Cloud Security
• Familiarity with FedRAMP processes
• Experience with automated compliance tools
• Understanding of DevSecOps concepts
• Knowledge of CMMC framework
• Experience with continuous monitoring tools
• Basic security architecture knowledge
• Familiarity with privacy requirements
• Experience with documentation management systems
• Understanding of agile methodologies
• Knowledge of security testing methodologies

Our Equal Employment Opportunity Policy
The company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race, color, religion, creed, ethnicity, sex, sexual orientation, gender or gender identity (except where gender is a bona fide occupational qualification), national origin or ancestry, age, disability, citizenship, military/veteran status, marital status, genetic information or any other characteristic protected by applicable federal, state, or local law. We are committed to equal employment opportunity in all decisions related to employment, promotion, wages, benefits, and all other privileges, terms, and conditions of employment.

The company is dedicated to seeking all qualified applicants. If you require an accommodation to navigate or apply for a position on our website, please get in touch with Heaven Wood via e-mail at accommodations@koniag-gs.com or by calling 703-488-9377 to request accommodations.

Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag, we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical, professional, and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers, employees, and native communities. For more information, please visit www.koniag-gs.com .

Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352

• Job Family IT, Cyber Security, Network Systems
• Job Function Cyber Security Architect/Engineer