Cybersecurity Engineer (Proposal)

📋 Description

• • Horizon Industries, Limited is seeking a highly skilled and experienced Cybersecurity Assessment and Authorization (A&A) Subject Matter Expert (SME) to join our team. This crucial role involves providing senior-level cybersecurity expertise to support the authorization of complex information systems and ensure strict adherence to Department of Defense (DoD) cybersecurity policies and procedures. As a key member of our cybersecurity division, you will be instrumental in guiding systems through the DoD cybersecurity authorization process, acting as either the primary system authorizing expert or a specialized subject matter expert for systems undergoing this critical evaluation.
• • Your responsibilities will encompass a deep dive into the application of security controls as defined by NIST SP 800-53, ensuring their effective implementation across large-scale enterprise environments. You will be working with systems that may include multiple enclaves, Automated Information Systems (AIS), enterprise applications, and outsourced IT services, particularly those supporting entities like the Defense Logistics Agency (DLA).
• • A significant aspect of this role involves the meticulous evaluation of system vulnerabilities. You will be tasked with determining the appropriate severity level for identified security control deficiencies, assessing their potential impact on the system's authorization status, and formulating actionable recommendations for remediation. This requires a keen analytical mind and a thorough understanding of cybersecurity risk.
• • You will play a vital role in communicating the progress, risks, and outcomes of systems undergoing the Risk Management Framework (RMF) authorization process to senior leadership. This necessitates strong communication and presentation skills, enabling you to clearly articulate complex technical information to a non-technical audience and influence decision-making.
• • The ideal candidate will possess a robust understanding of DoD cybersecurity authorization policies, procedures, and implementation processes. This includes a proven track record of supporting the DoD RMF authorization lifecycle, from initial assessment to final authorization.
• • You will also be expected to stay abreast of and assess cybersecurity considerations related to emerging technologies. This includes, but is not limited to, cloud environments, Industrial Control Systems (ICS), Warehouse Execution Systems, and Operational Technology (OT) infrastructures. Your insights will be critical in ensuring our systems remain secure in an ever-evolving technological landscape.
• • This position offers the opportunity to work remotely, providing flexibility while contributing to critical national security initiatives. You will be part of a dynamic team dedicated to maintaining the highest standards of cybersecurity for our clients.
• • The role demands a proactive approach to identifying and mitigating cybersecurity risks, ensuring compliance with all relevant regulations and standards. You will contribute to the overall security posture of the organization and its clients by ensuring that information systems are secure, resilient, and authorized for operation.
• • You will collaborate with various stakeholders, including system administrators, developers, and government personnel, to gather necessary information, conduct assessments, and facilitate the authorization process. Your ability to build strong working relationships and foster a collaborative environment will be essential for success.
• • This is a challenging yet rewarding opportunity for a seasoned cybersecurity professional looking to make a significant impact in a critical sector. Your expertise will directly contribute to the security and integrity of vital information systems.