Cybersecurity Engineer

at  Lawelawe Defense Inc

WHO WE ARE

Lawelawe is a Native Hawaiian Owned Small Disadvantaged Business (NHO SDB) that specializes in providing a range of services to federal government clients, including program management, digital solutions, human capital and training, and medical staffing. Lawelawe leverages our NHO status to secure federal contracts that not only drive business success but also support our overall mission to uplift economically disadvantaged Native Hawaiian families and preserve the Native Hawaiian heritage.

THE TEAM

Lawelawe Defense Inc ("LDI") is an SBA Certified 8(a) Native Hawaiian Owned (NHO) SDB Lawelawe Defense offers an outstanding record of delivery on various projects encompassing: Program and Portfolio Management; Systems Engineering and Architecture; Network Engineering and Operations; Data Center Optimization and Operations; Desktop/Server and Application Virtualization.

Here’s What You Need

• MA / MS in related field with 10+ years relevant/applicable experience or in lieu BA/BS in related field with 15+ years’ relevant/applicable experience
• Secret security clearance
• Must be a US citizen
• Minimum Sec+ or higher certification
• 5 years’ experience with DOD or Army hardware/software and applications development, installation, maintenance, operation, and testing efforts.
• 5 years’ experience in monitoring, testing, troubleshooting, and performing corrective actions for Cybersecurity IT systems.
• Experience with Risk Management Framework, vulnerability assessments, Information Assurance Vulnerability Alerts (IAVA) reporting, and cybersecurity problem resolution
• Extensive knowledge of policies/directives/regulatory guidance in the Cybersecurity field.
• Have a minimum of five (5) years RMF experience in a complex network and systems environment consisting of a large diverse population of users, computers, applications, and technologies.
• Experience in Enterprise Mission Assurance Support Service (eMASS)
• Experience with vulnerability scanning tools such as Tenable and/or Fortify
• Experience in developing metrics from associated Cybersecurity elements
• Must have excellent writing skills
• Must be able to translate technical information into discussions or documentation artifacts.
• Have RMF understanding and knowledge of many of the following technologies: event logging and analysis for a Defensive Cyber Infrastructure, Cloud Computing Environments and service providers (e.g., Amazon Web Services, Azure) coupled with authorization processes, application security capabilities and DoD Public Key Infrastructure for the commercial environment.

Benefits

• A competitive compensation package
• Comprehensive health and wellness benefits, including medical, dental, and vision plans
• Access to company-provided retirement savings options with matching contributions
• Opportunities for professional growth and continued learning
• Additional perks such as discounts on various services and products

Disclaimer:
The above job description is intended to describe the general nature and level of work being performed by individuals assigned to this position. It is not intended to be an exhaustive list of all responsibilities, duties, and skills required. Candidates possessing the necessary qualifications for the position will be considered.
Lawelawe is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status, and will not be discriminated against on the basis of disability.
Notice to all Applicants:
Offers of employment are contingent upon satisfactory completion of a comprehensive background verification, inclusive of a criminal record check. Employment may be subject to other background checks, as required by the position.
RDbVxcjvO

• Support application development teams at the lowest levels with implementation of Cybersecurity principles and organizational regulations, policies and processes
• Assist development teams with interpretation of Cybersecurity requirements to ensure security as a foundation
• Deliver cyber-related input to effectively and efficiently document artifacts (e.g., Security Plans, Implementation Plans, Plan of Action & Milestones)
• Update/complete RMF requirements for Enterprise Mission Assurance Support Service (eMASS)
• Develop and/or collect eMASS required documentation and submit via organizational channels and processes
• Translate security policies, implementation guidance, and requirements into cybersecurity implementation and develop and make Cybersecurity recommendations to leadership where applicable
• Develop, track, and report on Plans of Action and Milestones
• Review, interpret, and track vulnerability scans
• Review, analyze, and recommended corrective actions for Security Technical Implementation Guides (STIGs) and resultant checklists and scans to satisfy eMASS imports and RMF requirements
• Analyze network / system / process / IT service performance data and provide reporting to the stakeholders
• Provide input to internal project teams consisting of both system users and IT resources as well as functional proponents and Army communities to ensure effective use of IT solutions, tools, and processes.
• Analyze network/systems/ process/ IT service performance data and vulnerability scan