SECURITY ENGINEER TEAM LEAD - TOP SECRET/SCI WITH SECURITY CLEARANCE

Company: Sunayu, LLC
Location: Bethesda
Posted on: September 29, 2024

Job Description:

Location: Bethesda, MD Category: Cyber Security Architecture and Engineering Travel Required: No Remote Type: Hybrid Remote Clearance: Top Secret/SCI Sunayu LLC has an an exciting opening for you as our next TS/SCI Security Engineer Team Lead working across several Task Orders under the DOMEX Technology Platform (DTP) contract supporting NMEC. Have impact as part of a mission focused, solutions oriented, and adaptive team that values innovation, collaboration, and professional development. As the Security Engineer Technical Lead, your job is to provide technical security expertise in our cloud and on-premise infrastructure. You will lean on your experience with security technologies and industry best practices while employing effective security solutions. You are a demonstrated leader, skilled at achieving cross functional collaboration in a dynamic and fast paced environment. While most work is conducted on-site at our client location in Bethesda, MD, we offer a flexible schedule and, occasionally, some tasks may be performed remotely. Percentage of remote work will vary based on client requirements/deliverables. As an integral member of the team, you will work closely with DTP Program Management, Task Order Leads, and Security Engineers on the following key tasks: * Provide management oversight and coordination of DTP Security Team across multiple Task Orders * Provide technical guidance to team members while employing security solutions
* Directly interact with DIA and NMEC Security POCs
* Create, improve, and maintain security policies and procedures
* Provide operating system hardening and system patching guidance based on DISA STIGs and NIST publications
* Analyze security incidents and provide recommendations for resolution
* Strong knowledge and experience in software development in an Agile or SAFe environment
* Serve as Scrum Master for the Security Team
* Manage individual project priorities, deliverables, and deadlines.
* Foster an environment of collaboration with the different team members in the goal of providing quality service and product to our customer. You demonstrate a solid understanding of security best practices and meet the following qualifications: * BS degree and 12+ years of prior relevant experience or Masters with 10+ years of prior relevant experience
* An active TS/SCI clearance with the ability to obtain/maintain a Polygraph
* Have at least one of the following DoD 8570.01-M IASAE Level II certifications: CISSP, CISSP-ISSAP, CISSP-ISSEP, CSSLP, or CASP+ CE. NOTE: the CISSP Associate is not acceptable
* Familiarity with NIST Special Publications e.g. NIST SP 800-27, 30, 37, 53, 60
* Experience with CNSS publication CNSSI 1253
* Experience with incident response plans, plans of actions and milestones (POA&Ms), risk management plans, and vulnerability management plans
* Experience establishing and maintaining a System Security Engineering (SSE) management process to integrate security and privacy controls into complex hardware and software systems
* Experience managing a team of Cyber Security Engineers (CSEs) and Information System Security Officers (ISSOs)
* Experience supporting DoD/IC systems through the entire Risk Management Framework Plus (RMF) process
* Experience using Tenable Security Center and all components
* Experience with technologies such as Linux, Windows, firewalls, gateways, proxies, VPCs, and public key infrastructure.
* Strong analytical, communication, problem-solving, and interpersonal skills You will wow us even more if you have some of these: * An active TS/SCI clearance with Poly
* Certified Scrum Master (CSM) or SAFe Scrum Master (SSM) certification
* Experience with SAFe methodology
* Successfully achieved ATO under RMF+
* Experience working in Agile and DevOpsSec environments
* Experience with big data applications
* Experience with Jira and Confluence
* Experience with OIDC or Oauth2
* Experience with any of the following technologies:
* Kubernetes, Rancher, or Cloudera
* CI/CD tools like Jenkins or Gitlab
* Elasticsearch
* Active Directory
* SQL and NoSQL databases
* Scripting languages like bash, python, or PowerShell

Keywords: Sunayu, LLC, Potomac , SECURITY ENGINEER TEAM LEAD - TOP SECRET/SCI WITH SECURITY CLEARANCE, Engineering , Bethesda, Maryland