Leading Path Consulting
Information Technology and Management Consulting
SystemsSecurityEngineer(TS/SCIw/Poly)Bidrole
“Systems Security Engineer (TS/SCI w/ Poly) Bid role at Leading Path Consulting. Skills: cloud security, assessment and authorization (A&A), continuous monitoring, risk management, security control assessments, program management. assess cloud security technologies for security gaps and weaknesses. analyze security scan findings and perform risk analysis”
What You'll Achieve.
accelerate mission delivery; connect mission partners with the power commercially-driven cloud computing; ensure timely delivery of all contract requirements; meet Program Objectives
Industry & Context.
assess cloud security technologies for security gaps and weaknesses; analyze security scan findings and perform risk analysis; analyze system alerts to determine if a security weakness exists
TS/SCI w/ Poly clearance
What They're Looking For.
Must Have
Demonstrated experience facilitating TEMs with cloud service providers to review cloud service architectures, Demonstrated experience maintaining assessment and authorization (A&A) packages across multiple services or systems in accordance with FIPS-199, NIST 800-53, and CNSS 1253 requirements, Demonstrated experience designing, implementing, assessing or reviewing systems that utilize cloud technology with either Amazon Web Services, Oracle Cloud, Google Cloud, or Microsoft Azure cloud architecture, Demonstrated experience utilizing or reviewing cross domain technology and common architecture designs, Demonstrated experience with continuous monitoring requirements to include scan analysis for critical or high findings with common scan tools such as Rapid 7, Nessus, and Qualys, Demonstrated experience creating, monitoring, or closing system or service plan of Action and Milestone items (POA&Ms), Demonstrated experience utilizing compliance tools to track assessment and authorization activities such as Xacta 360, Risk Vision, RSA Archer, Demonstrated experience with the common control provider concept within the NIST Risk Management Framework, Demonstrated experience with security control assessments to include working with SCAs and preparing security packages for SCAs, Demonstrated experience conducting information system security engineering activities, Demonstrated project management experience including project planning, task tracking, milestone management, and resource coordination, Demonstrated experience developing and maintaining program metrics, performance indicators, and compliance status dashboards, Demonstrated experience preparing technical reports, program highlights, status briefings, and leadership communications
Nice to Have
Demonstrated experience assessing cloud security technologies for security gaps and weaknesses according to industry standards, Demonstrated experience reviewing cloud security body of evidence packages for completeness and accuracy, Demonstrated experience facilitating technical exchange meetings (TEMs) with cloud service providers to review cloud service architectures, Demonstrated experience providing project management support including project planning, task tracking, milestone management, and resource coordination to ensure timely delivery of all contract requirements, Demonstrated experience using the Sponsors or IC element A&A process, Demonstrated experience creating or reviewing A&A body of evidence documentation in a cloud security environment, Demonstrated experience identifying, implementing, or reviewing appropriate information security controls, Demonstrated experience working in Xacta 360, Demonstrated experience with Sponsor's tools
What You'll Do.
assess cloud security technologies for security gaps and weaknesses
analyze security scan findings and perform risk analysis
review cloud security body of evidence packages
collaborate with other internal components and security peers to determine security and potential weaknesses of cloud infrastructure and cloud services
advise Sponsor leadership on cloud security services
analyze system alerts to determine if a security weakness exists and document risk mitigation procedures
sustain and evolve the Sponsor's standard operating procedures
facilitate technical exchange meetings (TEMs) with cloud service providers to review cloud service architectures
provide program management support
develop and maintain program metrics and performance indicators
respond to Sponsor inquiries and requests for information
prepare periodic program highlights
and briefing materials
support ad hoc taskings
maintain regular communications with the Sponsor
How You'll Work.
Team & Collaboration
collaborate with other internal components and security peers; facilitate technical exchange meetings (TEMs) with cloud service providers
Communication Scope
prepare technical reports; program highlights; status reports; briefing materials; respond to Sponsor inquiries and requests for information; maintain regular communications with the Sponsor
Process & Methodology
project planning, task tracking, milestone management, resource coordination, program metrics, performance indicators, compliance status dashboards
Applying for this Systems Security Engineer (TS/SCI w/ Poly) Bid role role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
ANONYMOUS · UNFILTERED
What do employees actually say about Leading Path Consulting?
Real rants from real employees. Read before you apply.