Cyber Security Engineer

B

Basecamp Consulting & Solutions LLC

Cyber Security Engineer

Reston, VA
Full Time
Paid
  • Responsibilities

    Benefits:

    Disability

    Life Insurance

    401(k) matching

    Competitive salary

    Dental insurance

    Employee discounts

    Health insurance

    Paid time off

    Parental leave

    Vision insurance

    Reports to: Account Executive

    Status: Permanent, Full-time

    Location: 2-3 days a week Hybrid, Northern Virginia

    ORGANIZATIONAL BACKGROUND

    Established in August 2016, Basecamp Consulting and Solutions, LLC is a dynamic Information Technology (IT) consulting firm committed to delivering results for our clients. Specializing in next-generation IT and digital transformation solutions, Basecamp Consulting and Solutions is dedicated to helping clients achieve success through trust, innovation, quality work, and a steadfast commitment to results.

    At Basecamp, we believe in the power of emerging technologies to propel our clients toward their goals. Our focus lies in business and IT modernization, utilizing Cloud solutions, cybersecurity, and cutting-edge application development. We pride ourselves on a team of talented professionals who are passionate about supporting our clients on their journey towards innovative outcomes.

    Basecamp Consulting and Solutions is dedicated to pushing the boundaries of IT consulting and we are equally committed to embodying these principles in every facet of our work. Our head-office is located in Reston, VA.

    POSITION OVERVIEW

    Reporting to the Account Executive, the Information System Security Officer (ISSO), you will play a crucial role in ensuring the integrity, confidentiality, and availability of our federal client's information systems, specifically supporting our customer’s Cybersecurity initiatives including ensuring FISMA and FedRAMP compliance and standards. This position demands a highly skilled and security-focused individual who can navigate complex regulatory environments and contribute to our ongoing security efforts.

    DUTIES AND RESPONSIBILITIES

    Configure IAM Policies with tools such as Ping, SailPoint, etc.

    Perform Firewall Change requests

    Research, write, and review recommendations on cybersecurity policies, assessments, and engineering practices. Prepare risk assessment reports and provide expert guidance on mitigation strategies.

    Recognize and detail system characteristics by working with key personnel and IT security teams.

    Produce essential documents such as security categorizations, risk assessments, and contingency plans

    Administrate Vulnerability Scans (ACAS) or other Risk Management product that combines real time vulnerability scanning, detection, and compliance monitoring.

    Review and implement security technical implementation guides (STIG)

    Implement and enforce all FISMA, FedRAMP and Security compliance requirements for assigned systems.

    Experience writing SSPs from the ground up.

    Manage the security aspects of the information system, including system security planning, system security testing, and security control assessments.

    Conduct regular security reviews and compliance audits and prepare audit reports for management and stakeholders.

    Develop and update the System Security Plan (SSP), Risk Assessment Report, and Contingency Plan based on ongoing assessments and changes in the environment.

    Provide guidance and support for Authorization and Accreditation (A&A) processes.

    Monitor security systems for potential vulnerabilities and respond to and mitigate incidents as they arise.

    Ensure proper configuration management of security tools and software, maintaining compliance with established standards and policies.

    Serve as a point of contact for all matters related to information security concerning the assigned systems.

    QUALIFICATIONS

    Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a related field.

    Minimum of 5 years of experience as a Cyber Security Engineer or in a similar role, with specific experience in RMF, FISMA, FedRAMP and Security Assessment and Authorization processes.

    Strong Experience with IAM tools like Ping Identity.

    Strong understanding and ability to make Risk based decision

    Experience with Cloud (AWS, Azure or GCP)

    Strong understanding of NIST guidelines, particularly those related to federal information system standards.

    Certified Information Systems Security Professional (CISSP) or similar security certification is highly preferred.

    Proven ability to assess risks and implement effective risk management measures.

    Exceptional problem-solving skills and the ability to work under pressure.

    Excellent communication skills, capable of working effectively with multi-disciplinary teams.

    COMPENSATION AND WORKING CONDITIONS

    Competitive health and medical benefits package and paid-time off

    Other internal benefits include access to professional development funds and organizational trainings as available

    Working standard office hours with start and end time flexibility (40 hrs/week).

    Physical/cognitive demands include use of typical office equipment, prolonged periods of sitting and working on a computer/telephone, high degree of concentration and attention to detail;

    Psychological demands include deadline drive requirements, capacity to organize and prioritize own work, adaptable to change and ability to set and work towards performance and development goals.

    Basecamp Consulting and Solutions is committed to principles of equity and inclusion. We strive to create a workplace where everyone feels safe and empowered. We will be prioritizing applications from individuals with diverse backgrounds, including racialized populations, Veterans, and 2SLGBTQ+.

    Flexible work from home options available.