Lead Security Engineer
Fairfax County, VA
Business Group Highlights
The Defense group supports the Department of Defense (DoD) mission to keep our homeland and its citizens safe. We provide solutions to improve the Nation's defense by providing software, systems engineering, IT, training and logistics and fleet management solutions.
Individual would be responsible for managing a complex security environment with primary expert and SME-level staff on a systems engineering and integration cybersecurity program. The Lead Security Engineering is responsible for providing recommendations to the Government in order to maintain a systems security posture. The Lead manages the Security team responsible for creating and maintaining the security documentation for certification and accreditation (C&A) and reviewing system designs and proposing changes to identify potential security weaknesses. The Lead also works closely with the Security Team to provide technical assessments and expertise to specific projects. This would require being able to understand a complex system in a short amount of time, determine its security weaknesses at all layers to include hosts, databases, middleware, and applications and then generating clear, descriptive reports that include corrective actions to help guide the developer on how to mitigate the weaknesses.
The Lead will:
Communicate with the system owner, senior leadership, and developer regarding security considerations of the system engineering life cycle
Manage the team that develops and maintains security accreditation artifacts to include the Security Requirements Traceability Matrix (SRTM), System Security Plan (SSP), and others
Manage system Plan of Actions and Milestones (POA&M) to include the drafting of expectations and waivers as appropriate
Manage assessments of system safeguards and controls and respond to external audits as required
Interview system administrators and support personnel to extract system functionality narratives
Manage the controlling, labeling, virus scanning and appropriately transfering of data (upload/download) between information systems at varying classification levels
Conduct research and perform security analysis on the impacts of system designs, modifications, and technological initiatives.
Manage the writing and validation of NIST 800-53Rev 4 control responses based on system documentation
14 19 years of Experience
5-10 years of Cyber Security Experience
At least 10 years of Management Experience managing large teams (25 +) of expert and SME-level personnel
BS in a technical degree
Technical Masters a plus
CISSP certification required
Additional Certifications are a plus: CSEP/ESEP, ITIL, CISSP, Certified Ethical Hacker, or Security +
Experience architecting, designing, and engineering security solutions
Experience in designing security solutions for confidentiality, integrity, and availability of information assets
Experience identifying and developing solutions to security controls
Progressive experience managing large, complex security programs
Strong Communication skills (written and verbal)
Proven success in sitting on-site with customers and developing strong relationships
What matters to our nation, is what matters to us. At Perspecta, everything we do, from conducting innovative research to cultivating strong relationships, supports one imperative: ensuring that your work succeeds. Our company was formed to bring a broad array of capabilities to all parts of the public sectorfrom investigative services and IT strategy to systems work and next-generation engineering.
Our promise is simple: never stop solving our nations most complex challenges. And with a workforce of approximately 14,000, more than 48 percent of which is cleared, we have been trusted to just that, as a partner of choice across the entire sector.
Perspecta is an AA/EEO Employer - Minorities/Women/Veterans/Disabled and other protected categories.
Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed
As a government contractor, Perspecta abides by the following provision
PAY TRANSPARENCY NONDISCRIMINATION PROVISION
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)