Cyber Security Systems Engineer, Lead

Cyber Security Systems Engineer, Lead Job ID 36473 Are you a problem solver who enjoys a challenge? Are you mission oriented and would like being a part of a team that is doing important work to help make our world a safer place? Then look no further. Parsons is seeking a Cyber Engineer (Risk & Compliance) to support the Vice President, Cyber Infrastructure Sector in developing and completing processes and procedures for risk and vulnerability assessment for internal and external customers, testing new cybersecurity products (hardware and software), and designing and implementing mitigations for vulnerabilities discovered during assessments. The primary focus will be vulnerability assessment (VA ) for both commercial and internal customers. The security assessments undertaken by the Cyber Risk and Compliance and Security Assessment Team (SAT) range in complexity and duration. SPECIFIC RESPONSIBILITIES: Applies related technical experience and knowledge as well as business experience in analyzing and proposing Information Technology (IT) and Industrial Control System (ICS) Security solutions for assigned initiatives that serve Parsons corporation-wide customer base and its clients. Works with Parsons Managers and end users to gather information and requirements needed to assess potential IT and ICS Security solutions that meet Parsons current and projected business needs. Performs Vulnerability Assessments and Penetration Tests on IT or ICS networks using a combination of automated tools and manual inspection; performs gap analysis between current and recommended cybersecurity posture; combines information with industry research and cost-benefit-analysis to develop a recommendation for an IT or ICS security solution. Must be able to design appropriate security architectures and solutions to protect customers' critical assets and mitigate vulnerabilities. Team member that researches, analyzes and provides cybersecurity solutions, which may include key hardware and/or software. QualificationsRequired Experience: 4-year degree in Computer Science or Engineering degree (or related curriculum) 15 years of progressive technical experience analyzing system cybersecurity posture and analyzing, developing and implementing mitigation plans. Has knowledge of NIST, ISO/IEC, or DoD security directives. Preferred Experience: Certified Information Security Professionals (CISSP), Certified Ethical Hacker (CEH), SANS GIAC Certified Industrial Cyber Security Professional (GICSP), or SANS GIAC Certified Penetration Tester (GPEN). Ability to perform Vulnerability Assessments on Information Technology (IT) and Industrial Control System (ICS) systems and research, design and implement appropriate mitigations to protect customers' critical assets. Familiarity with Certification and Accreditation (C&A) processes such as NIST RMF, DIACAP or similar and be able to complete processes and procedures for security assessments is a big plus. Possess a thorough working knowledge of common commercial and/or open source vulnerability assessment tools and techniques used for evaluating operating systems, networking devices, databases and web applications. Solid understanding of NIST - especially 800-53 Rev4 is a must. Working knowledge in configuring and securing Microsoft and UNIX operating systems is a must. Broad knowledge of cyber security threats and techniques used by adversaries to compromise systems - both technical and non-technical techniques. Familiarity with security risk and vulnerability assessment methodologies, latest technology trends and vulnerabilities including social engineering and other common techniques utilized by adversaries. Broad knowledge of security best practices, security solutions, and methodologies for conducting advanced security assessments, to include manual assessments and malicious user testing. Advanced understanding of security tool strengths and weaknesses and ability to select, configure, troubleshoot and use the best "tool for the job". Knowledge of ICS/ SCADA hardware, operating systems, networking, and security best practices is highly desirable. Written and oral communication skills appropriate for the position, including the ability to present technical data in a logical manner that is easy to understand (may include communication via telephone, in person, or presenting to small groups). Ability to write moderately complex documents (may include emails, memos, procedures, presentations, and reports). Communicates with a wide variety of individuals (employees and managers) throughout the organization and outside of the organization (ie clients, vendors). Applicants selected for employment will be subject to a Federal background investigation and must meet additional eligibility requirements for access to classified information or materials. Parsons offers an ethical, challenging, diverse, rewarding and fun work experience where enthusiastic, responsible people use their energy, talent and dedication to make a difference in the world. Parsons is proud of our 70+ years in delivering engineering, technical, and construction services to our legacy markets: transportation, water, environmental, oil and gas, industrial, and defense. As markets have evolved, so have we. Parsons is a provider of choice for cybersecurity and alternative project delivery services. We believe talent, passion, and commitment generate success. Parsons employees go the distance for our customers and give back to the communities in which we live and work. We welcome self-starters who have the ability to solve problems elegantly-and who believe in our core values of integrity, safety, quality, innovation, sustainability, and diversity. If this describes you, join us! Parsons delivers a better world. Parsons is an equal-opportunity, drug-free employer committed to diversity in the workplace. Minority/Female/Disabled/Protected Veteran/LGBT Apply Now

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Functional Lead - Security Systems Engineering...
Centreville, VA Parsons Corporation
Lead Aviation Safety Systems Engineer
McLean, VA The MITRE Corporation
Cyber Systems Engineer 4
Stafford, VA Northrop Grumman
Communications Systems Engineer (Railway)
Reston, VA Bechtel Corporation
Payload Engineering Digital Systems Engineer Job
Chantilly, VA SAIC
Laser System Engineer - Safety Job
King George, VA SAIC