Full Job Description
Edgewater Federal Solutions is a privately held government contracting firm located near Frederick, MD. The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services, and timely delivery. Edgewater is ISO 9001, 20000-1, 27001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018, 2019, and 2020.
Edgewater is currently seeking a Senior Cybersecurity Specialist to support our federal customer in the Germantown, MD area.
This person will provide a high level of technical advice and guidance to management and other technical specialists on critical IT security issues; Create and maintain system security documentation; Conduct technical risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs and conduct systems security evaluations, audits, and reviews; Apply FISMA, NIST and Federal agencies guidance for security control policies and procedures. Position requires consistent exercise of discretion and judgment.
Primary Responsibilities and Duties
Act as an advisor on all matters, technical and otherwise, involving the security of information systems under purview.
Develop all required cybersecurity documentation including but not limited to system security plans, privacy impact assessments, security categorizations, and incident response plans.
Work with the Information Systems Security Manager (ISSM) to obtain and maintain the system’s Authority To Operate (ATO).
Provide guidance to system administrators and system owners on adherence to applicable requirements for maintaining security posture of authorized systems.
Interpret Federal and Departmental guidance to develop security operating policies and procedures to protect networks, and other sensitive information.
Assist in conducting assessments of information systems in adherence to FISMA, FIPS and NIST requirements.
Provide Configuration Management (CM) oversight for information system security software, hardware, and firmware.
Manage changes to systems and perform assessments on the security impact of the changes.
Perform risk assessments and analysis in support of ongoing awareness and adherence to the organization’s risk tolerance.
Anticipate security requirements and identify sound security controls for applications, systems, and processes.
Research and when necessary, publish and distribute notifications which address major information security threats, i.e., hacking, malicious activity, damaging vulnerabilities with active exploits in the wild, Trojans, Worms, Viruses, Malware, etc.
Responsible for providing guidance, assistance, and validation of completion of POA&M items.
Performs other tasks as assigned.
Minimum Knowledge/Experience Required
7+ years of relevant progressively increasing responsible cybersecurity experience
Ability to communicate with other team members effectively and clearly on technical information related to information systems’ design and implementation.
Knowledge of information technologies to include computer hardware and software, operating systems, and networking protocols, cloud-based security issues and terminology.
Familiarity with FISMA and the Security Assessment and Accreditation (SA&A) process.
Working knowledge of network scanning tools such as Nessus, Netsparker, etc.
A bachelor’s degree in Cybersecurity, Computer Science, or other relevant field of study.
Any equivalent combination of experience and training that provides the required knowledge, skills, and abilities.
Be eligible to obtain a Federal Security Clearance at the Secret or higher level.
CISSP, CISM, CEH, SSCP, SANS GIAC, or other certification is strongly desired, but not required.
It has been and continues to be the policy of Edgewater Federal Solutions to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, marital status, veteran status, and/or other status protected by applicable law.