View all jobs
SECURITY ENGINEER
Arlington, VA · Information TechnologySecurity Engineer
Will provide support for the governance and facilitation of the DCM Security IPT, development of cyber strategy and executive briefings for cloud security and DCM, security engineering and ISSO support for cloud service and migrating application ATOs, and enterprise efforts to streamline, tailor and automate the implementation of the Risk Management Framework (RMF) at CBP. Examples of cybersecurity activities include, but are not limited to the following:
Will provide support for the governance and facilitation of the DCM Security IPT, development of cyber strategy and executive briefings for cloud security and DCM, security engineering and ISSO support for cloud service and migrating application ATOs, and enterprise efforts to streamline, tailor and automate the implementation of the Risk Management Framework (RMF) at CBP. Examples of cybersecurity activities include, but are not limited to the following:
- Fulfill initial authorization and continuous monitoring requirements in support of approximately five cloud platform and infrastructure General Support Systems (GSS) and 5-10 SaaS systems
- Fulfill initial authorization and continuous monitoring requirements in support of the CBP Emerging Technology division which consists of approximately 25 Major Applications (MA) and subsystems
- Provide additional ad hoc ISSO support services where required by the Government
- Perform security and compliance operations and maintenance of systems hosted in the cloud to drive continuous monitoring of new cybersecurity threats and vulnerabilities
- Develop and implement new and innovative standards, processes, and technologies that support effective cyber risk management in the cloud, and positions cybersecurity as an enabler for mission systems migrating to the cloud
- Continue to facilitate regular interactions between CBP cybersecurity leaders to proactively identify new challenges and come to consensus and implement solutions to address those challenges
- Develop executive-level briefings internal to CBP and external to DHS and other relevant stakeholders to communicate cybersecurity priorities and challenges
- Advise OIT directorates on standard processes and procedures for evidence collection and storage
- Provide standard training for ISSOs responsible for financial systems