Pr. Cybersecurity & Compliance Engineer

Space Ground System Solutions, a Parsons company, has an immediate full-time opening for a Principal Cybersecurity & Compliance Engineer to support the Naval Research Laboratory (NRL) in Washington, DC. We are seeking a Principal Cybersecurity & Compliance Engineer who can structure, design, execute, and manage security solutions for a growing portfolio of software- and IT-centric projects to deliver ground-to-space transmit/receive services for the Naval Research Lab (NRL) and NRL's sponsors. A successful candidate will bring experience engineering efficient security solutions that enable rapid iterative system development in a classified security context.

RESPONSIBILITIES

• Design, deliver, and operate a security structure, in close partnership with the US Naval Research Lab and sponsor program security management to deliver antenna services to the broader community
• Support and liaise with government program management, security controls assessors, and authorizing officials (AOs) to ensure the integrity, security, and reliability of our services
• Developing and accrediting a secure design for iterative delivery of services in AWS GovCloud
• Work with and lead a multidisciplinary team including IT engineers, security personnel, and software developers through clear communication and direction to deliver a complete, secure, compliant systems solution.
• Utilize security experience of various security disciplines (i.e., physical, safeguarding, and classification management) to determine, apply, monitor and ensure appropriate security requirements applicable to the work programs.
• Implement, document, and verify security controls in commercial or private cloud-hosted information systems and orchestrate transition to government ownership and operation.
• Work with software, network, IT, facilities, and program security officials to design, assess, and mature the security posture of a multi-level (unclass through TS) DevSecOps pipeline.
• Design and coordinate the integration of defensive cyber operations sensors and sources into enterprise monitoring constructs.
• Enable a cross-organization, geographically distributed system development team to effectively deliver new software and IT services.
• Implement the management and training for software developers, system administrators, and other IT personnel, spearheading the integration of security concerns into a holistic engineering culture.
• Develop incident management plans, and conduct clear and concise assessments, corrective action plans, policies, procedures, and reports. This includes investigations of security incidents to determine the potential for compromise of program information, conducting government required self-inspections to ensure compliance with sponsor regulations and reduce security risks within NRL-managed and peer systems.

REQUIRED QUALIFICATIONS

• Must be a US citizen
• Active DoD Secret clearance required; with the ability to obtain a TS/SCI clearance and other accesses within one year of hire
• BS in relevant field (Computer Science, Software Engineer, Information Technology) and 15 years of related experience
• 10+ years of contractor or government program security experience supporting classified programs
• Familiarity with security manuals, directives, and Executive Orders including NISPOM, DCIDs, ICDs, Sponsor Instruction, DODM 5205.07
• Demonstrated history of teamwork and service skills
• Demonstrated ability to communicate clearly, verbally and in writing, to supported staff, management, and government customers
• Experience developing formal authorization and accreditation packages and associated bodies of evidence as a part of an IT team
• Deep familiarity with NIST 800-53/RMF and/or NIST 800-171 and CMMC compliance frameworks, including process and technical implementation
• Exposure to 800-53/171 compliance in the commercial cloud environment
• Familiarity with automation e.g., Ansible, Terraform, CloudFormation, InSpec to implement and verify security compliance

PREFERRED QUALIFICATIONS

• Strong preference for candidates holding current TS/SCI and experience in applying cybersecurity monitoring and compliance in accredited TS systems
• Experience with securing commercial cloud-hosted workloads
• Demonstrated experience with achieving formal gov't authorizations in commercial cloud-hosted systems (e.g., AWS GovCloud, C2S, etc)
• Experience serving in security engineering and compliance for a classified IT development program
• Knowledge of National Security Space systems

==============================================================

SGSS is passionate about making our nation the undisputed leader in Space because we understand that ensuring our security for future generations depends on it. We have emerged as a leader in the development of cutting-edge solutions for the Department of Defense and Intelligence Community. Our tremendous success can be attributed to our people and our priorities. Do you want to be part of a team that is helping the government solve major national security challenges in the space domain? We need your help.

SGSS believes in taking care of their employees by offering:

• ALL benefits fully funded, for your entire family
  • Medical/Dental/Vision/Group Life/STD/LTD - no employee premiums
• HSA (Health Savings Account) provided, with SGSS funding the maximum amount allowed by the IRS
• Retirement Savings Plan (RSP/401k) with a 20% annual company contribution - no employee contribution required

===============================================================

If this position requires a government clearance, the applicants selected will be subject to a government security investigation and must meet eligibility requirements for accessing classified information.

Each Division of Parsons is an Equal Opportunity/Affirmative Action Employer. All divisions are committed to making employment decisions based on valid requirements, without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity, veteran status, disability, or any other status protected by state, local or federal law. For more information, please visit www.eeoc.gov.