Cybersecurity Engineer

SierTeK proudly serves our clients by providing expertise in the Program Management, Information Technology, and Administrative Support domains. Founded in 2007 as a minority and service-disabled veteran-owned company, we serve as prime- and subcontractor for a multitude of Federal Department of Defense contracts. By focusing on continual improvement, our services remain at the forefront of our industry, and we pride ourselves on delivering our services with the highest degree of integrity.

SierTeK Ltd. is seeking a CYBERSECURITY ENGINEER to support a REMOTE opportunity.

POSITION OVERVIEW SECTION

Shall enhance and maintain the cybersecurity posture of MMO products and services, to include AFSIM. The contractor shall advise or assist in developing a comprehensive assurance strategy to continuously identify and mitigate potential security vulnerabilities or weaknesses and promote a secure software development lifecycle.

Essential Job Functions

Cybersecurity Awareness

• Conduct training sessions to promote secure software development practices and raise awareness among developers about vulnerabilities, weaknesses, and exploits that pertain to relevant programming languages, technologies, libraries, or platforms.

Cybersecurity Strategy

• Advise or assist in the design, implementation, and maintenance of a secure software development approach capable of satisfying diverse cybersecurity risk profiles (i.e., across managed DoD networks and classification domains). This approach should balance assurance with speed, promote a secure by design paradigm, and provide the necessary evidence to underwrite a continuous Authority to Operate (cATO)

Continuous Monitoring

• Implement continuous monitoring to maintain DoD enterprise software certifications or Certificates to Field (CtFs). These certifications streamline the approval to use MMO products and services on enterprise DoD information networks to include NIPR, DREN, SIPR, SDREN, JWICS, and SAP networks

Monitor codebase changes as part of automated quality gates

• Perform security audits to ensure the sufficiency of both manual and automated practices and procedures
• Monitor third-party libraries for emerging vulnerabilities and weaknesses, particularly those vulnerabilities as identified in the public Common Vulnerabilities and Exposures (CVE) list
• Participate in critical design or code reviews and inspections.

Vulnerability or Weakness Remediation

• Advise or assist in the tracking and remediation of potential vulnerabilities and weaknesses associated with MMO products or services
• Perform security impact assessments and communicate risk to stakeholders through Information Assurance Vulnerability Management (IAVM) channels

Incident Management and Response

• Advise or assist in the design, implementation, and maintenance of a cyber incident management and response plan
• Coordinate MMO response activities during training events, tabletop exercises, or real-world incidents

Continuous Authorization and Compliance

• Advise or assist in the preparation and generation of required cybersecurity assessment and/or authorization documentation related to MMO products and services
• Engage with enterprise processes or coordinate with Authorizing Officials (AOs), as required to secure appropriate product certifications or certificates to field

Minimum Position Requirements

• Bachelor's Degree in Cybersecurity, Information Technology, Computer Science, or a related discipline
• 7+ years of experience

SierTeK is an equal opportunity employer. Employment is decided based on qualifications, merit, and business need. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected Veteran status, gender identity and sexual orientation.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, transfer, leaves of absence, compensation, and training.

If you need assistance or accommodation due to a disability, you may contact us at 1+833.743.7835.