Cybersecurity Engineer

Be the Difference

Astrion offers comprehensive services that boost preparedness, optimize performance, and ensure success across various domains, from Cyber to Digital, Mission and Systems, servicing our nation's Civilian, Defense and Space communities. We support customers with Centers of Excellence in Washington DC, Huntsville, AL and Burlington, MA with an additional 36 locations across the U.S.

Astrion has an exciting opportunity for a Cybersecurity Engineer for the EPASS Contract supporting the Air Force.

We are looking for an experienced Cybersecurity Engineer to join the Three-Dimensional Expeditionary Long-Range Radar (3DELRR) program at Hanscom AFB, MA. The Contractor shall provide Cybersecurity support to ensure that all system and application deliverables meet the requirements of all DoD and Air Force cybersecurity policies as identified in the following paragraphs. The Cybersecurity Engineer shall ensure that all system deliverables comply with DoD and Air Force cybersecurity policy, specifically DoDI 8500.01, Cybersecurity, and that application deliverables are complaint with Public Law 111-383, which states the general need for software assurance.

To ensure that cybersecurity policy is implemented correctly on systems, the Cybersecurity Engineer shall ensure compliance with DoD and Air Force certification and accreditation policies, specifically Department of Defense Instruction (DoDI) 8510.01, Risk Management Framework (RMF) for DoD Information Technology. The Cybersecurity Engineer shall ensure that all application deliverables comply with DISA Application Security Development Security Technical Implementation Guide (STIG), which includes the need for source code scanning to mitigate vulnerabilities associated with SQL injections, cross-site scripting and buffer overflows. The Cybersecurity Engineer shall support activities and meet the requirements of DoDI 8520.02, Public Key Infrastructure (PKI) and Public Key (PK) Enabling, in order to achieve standardized, PKI-supported capabilities for biometrics, digital signatures, encryption, identification and authentication.

The Cybersecurity Engineer shall be able to perform work that involves ensuring the confidentiality, integrity, and availability of systems, networks, and data through the planning, analysis, development, implementation, maintenance, and enhancement of information systems security programs, policies, procedures, and tools. The Cybersecurity Engineer shall travel as required to support cybersecurity assessments or cybersecurity incidents.

JOB DETAILS

LOCATION:     Hanscom AFB, Bedford, MA

JOB STATUS:  Full Time

TRAVEL: TBD

REQUIRED QUALIFICATIONS / SKILL

• Master’s or Doctorate Degree in a related field and at least 20 years of experience in the respective technical / professional discipline being performed, 12 years of which must be in the DoD
• OR, Bachelor’s Degree in a related field and 25 years of experience in the respective technical/professional discipline being performed, 15 years of which must be in the DoD
• Candidate will have proficiency in the RMF ATO accreditation process and be able to use eMASS at the SECRET level.
• Progressive experience in cybersecurity protection/development projects

RESPONSIBILITIES:

• Ensure engineering activities (analysis, design, implementation, maintenance, and monitoring) best meets (as resources allow) established requirements (e.g., RMF, DISA Security Technical Implementation Guide).
• Responsible for ensuring information systems are secure and that data maintained in these systems is protected from unauthorized access.
• Evaluate all COTS products (hardware and software) to ensure they meet current information assurance standards and that security updates released by OEMs are installed and verified.
• Evaluate current status of potential information system threats from casual intrusion to intrusions meant to permanently or irreparably degrade system performance or protection.
• Interpret and analyze processing anomalies in major complex engineering systems and take corrective action.
• Develop, review, and update the System Security Plan (SSP) for the mission system to align with current RMF controls and their compliance status
• Update, understand, and maintain the mission system’s POA&M
• Be comfortable using eMASS for RMF control compliance and POA&M maintenance
• Develop, review, and refine Continuity of Operations (COOP) package documentation and related artifacts.
• Perform validation of systems, including development of criteria and procedures using agile Development Security Operations (DevSecOps) entrance and exit criteria throughout the product lifecycle
• Develops, reviews, and approves plans, schedules, and other technical documentation.
• Secret Clearance and U.S. Citizenship required for all applicants

What We Offer

• Competitive salaries
• Continuing education assistance
• Professional development allotment
• Multiple healthcare benefits packages
• 401K with employer matching
• Paid time off (PTO) along with a federally recognized holiday schedule

Who We Are

At Astrion, we innovate, elevate, and shape the world of tomorrow. At our core is our purpose to “Be the Difference”. This means we encourage our employees to take action and be the driving force for positive change. We foster an environment where innovative solutions flourish and our company continuously evolves.

We have a culture of care, empathy, and making a tangible difference within our organization and communities. We embrace continuous learning, growth, and innovation, and pushing the boundaries of what’s possible. We promote collaboration and empowering our teams is at the core of our success.

Join Astrion and Be the Difference in your career and the world!

Astrion is an Equal Employment Opportunity/Affirmative Action Employer. We provide equal employment opportunities to all employees and applicants for employment and prohibit discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

#LI-BM1