Junior Offensive Cyber Engineer

Mantech International Corporation
Boswell's Corner, United States of America
1 month ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Junior

Job location

Boswell's Corner, United States of America

Tech stack

Software System Penetration Testing
Cloud Computing
Software Documentation
Computer Security
Federal Information Processing Standards (FIPS)
Red Team (Cyber Security)
SharePoint
Data Streaming
Information Technology

Job description

MANTECH seeks a Junior Offensive Cyber Engineer to perform analysis of cybersecurity packages using the Risk Management Framework (RMF) process to achieve an Authority to Operate (ATO) while supporting the Marine Corps Systems Command (MCSC) in Quantico, VA. This position is offensive in nature and works closely with government officials and senior engineers.

Responsibilities include, but are not limited to:

  • The position requires someone with Offensive Cyber experience (penetration testing/red team/exploitation) and willing to do hands-on work.

  • Ensure system documentation reflects current system security configurations to include hardware and software components, data flow, interconnections, and ports, protocols, and services, etc.

  • Perform Compliance reviews and analyses to verify compliance with federal requirements (e.g., EO, OMB Memos, A-130, NIST SP 800-37, 800-53, FIPS199, and FIPS-200, etc.)

  • Perform analyses of security implementations for assigned systems pertaining to people, processes, and technologies, identify gaps and recommend solutions.

  • Perform analyses of security implementations for assigned systems pertaining to people, processes, and technologies, identify gaps and recommend solutions

  • Assist in the preparation and review of documentation to include System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), Authorization Recommendations (ARs), Cybersecurity Strategies (CSSs), and other A&A artifacts.

  • Research major obstacles related to the ever-changing FISMA requirements, which customers will need to overcome and provide recommendations.

  • Provide updates and input to the GRC SharePoint sites to include document uploads, page updates, access requests, permissions, etc. on an ongoing basis.

Requirements

  • Bachelor's degree and at least 2 years of related cybersecurity experience (additional 2 years of experience can be substituted in lieu of degree):

  • Must be compliant with DoD 8140 at an intermediate or advanced level. Thus, will need a CASP+CE, Security+, CISSP, or CISM certification.

  • Experience and expert knowledge on NIST guidelines, FISMA, Cybersecurity principles and methodologies, Executive Orders (EO's), Office of Management and Budget (OMB) Memorandums, Federal, DoD and CISA Technical Reference Architectures, Maturity Models, Risk Management Framework (RMF), Cybersecurity Framework (CSF), technical knowledge of IT systems

Preferred Qualifications:

  • USMC or Navy Validator certified

  • OSCP / OSEP / CPTS Certifications

  • Experience with cloud-based environments and technologies.

  • An analytical mind with excellent problem-solving ability.

  • Good communication skills and have good interpersonal, organizational, and analytical skills.

Clearance Requirements: Must Have an Active Secret with the ability to obtain Top Secret/SCI

Apply for this position