Cybersecurity System Security Engineer II - Management

Position Overview

The System Security Engineer’s primary function is working within Special Access Programs (SAPs) supporting SMC and AFSPC acquisition programs. The position provides “day-to-day” support for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities to meet NIST Cybersecurity requirements for system assessment and authorization.

Key Responsibilities

• Serve as the RMF Cybersecurity Specialist for the organization's Systems.
• Maintain day-to-day security analysis of RMF packages to ensure timely updates and notifications.
• Update RMF Security Control Families as required and properly process through eMASS.
• Maintain thorough understanding of NIST 800-53 and NIST 800-171 controls and document implementation in the Security Controls Traceability Matrix.
• Provide support and recommendations to Program Managers and Security Authorities to maintain appropriate information assurance (IA) postures.
• Conduct reviews to identify and mitigate potential security weaknesses and ensure that all security features are implemented and functional.
• Monitor and resolve Plan of Action and Milestones (POA&M) to mitigate system vulnerabilities.
• Draft and/or prepare and maintain security Assessment and Authorization documentation (e.g. IA SOP, SSP, MSSP, RAR, SCTM).
• Perform oversight of the development, implementation, and evaluation of the information system security program policy with emphasis on integration with existing SAP network infrastructures.
• Develop and provide IA risk management recommendations to the customer.
• Represent the Government Program Manager in various SSE-related working groups, advisory groups, and advisory council meetings.

Required Qualifications

• Experience: 6-8 years total experience, including a minimum of 4 years within SCI or SAR environments; minimum 2 years of SAP relevant experience is highly desired.
• Education: Bachelor’s degree in a related discipline or equivalent additional experience (4 years).
• Certifications: Must meet the position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level 1 and Information Assurance Manager Level 2 within 6 months of hire.
• Security Clearance: Current Top Secret Clearance with SCI Eligibility; eligibility for access to Special Access Program Information; willingness to submit to a Counterintelligence polygraph.
• Other Requirements: Familiarity with security policies/manuals and the appropriate ICDs/JAFANs/DOD Manuals; full understanding of the Risk Management Framework (RMF) and Joint SAP Implementation Guide (JSIG) processes for system accreditation; ability to work in a dynamic environment interacting with DOD, military/civilian personnel, and industry partners; working knowledge of Microsoft Office; high degree of originality, creativity, and initiative with minimal supervision; willingness to travel as required.
• Physical Requirements: Must be able to lift up to 50 pounds.

Compensation

Compensation: The projected compensation range for this position is $132,600–$172,600. Differentiating factors include Contract Wage Determination, relevant work experience, skills and competencies aligned to the role, geographic location, education, certifications, and Federal Government Contract Labor categories. K2 Group invests in its employees beyond just compensation.

Benefits & Perks

• Medical, Dental, and Vision Insurance
• FSA Medical & FSA Dependent Care
• Pre-tax 401(k) & ROTH 401(k) plans
• Profit Sharing Plan
• Life & Accidental Death Insurance
• Short Term/Long Term Disability
• Voluntary Group Life Insurance option
• Tuition Reimbursement
• Job-related Course Reimbursement
• Holiday Pay
• Paid Time-Off