Cybersecurity Engineer, Mid (Authorization & Assessment)

About the Role

We are seeking a Cybersecurity Engineer, Mid (Authorization & Assessment) to join our team in support of a cybersecurity risk management and assessment program with our DoD customer. In this role, you will be responsible for developing, reviewing, revising, implementing, managing, and maintaining technical documentation, forms, and processes that support the A&A as described below.

Individuals in this role must be available to work on-site at Ft. Meade, MD full-time.

Responsibilities

• Develop, review, update, and maintain A&A documentation, processes, and procedures supporting system authorization efforts
• Gather and analyze technical information to document new or evolving system functionality
• Prepare and review a wide range of security documentation, including:
  • Policies, procedures, and standards
  • Technical reports, analysis results, and presentations
  • Templates, forms, and process guides
• Ensure all documentation aligns with Federal, NIST, DoD, and DISA security requirements and guidance
• Maintain and update documentation templates and style guides
• Support the development and execution of A&A process improvement plans, including SOPs, TTPs, and Work Instructions
• Develop and maintain internal guidance (e.g., checklists, templates, how-to guides) for A&A implementation
• Document lessons learned and best practices to enhance assessment and validation processes in alignment with DoDI 8510.01 (RMF)
• Conduct technical and administrative reviews to ensure documentation is clear, accurate, and compliant prior to submission
• Update and revalidate A&A processes, guides, and procedures (minimum annually) from SCA-R and ISSM perspectives
• Create and maintain supporting forms for all A&A processes
• Support systems operating on NIPRNet and SIPRNet, including handling classified information for risk assessments
• Utilize and integrate with A&A tools such as eMASS and RTS
• Create and manage A&A forms using SharePoint, Adobe, and other Government-provided tools
• Ensure all process documentation is stored and maintained in internal repositories
• Participate in:
  • Process improvement and working group meetings
  • ISSM training sessions
  • On-site A&A support activities as required
• Develop and deliver training on new/updated A&A processes and documentation (e.g., via Microsoft Teams)
• Record and publish training sessions within established timelines

Qualifications

• Bachelor's degree in Information Technology or a related field
• Minimum of 5 years of experience in cybersecurity or network security roles
• Active DoD Top Secret clearance
• DoD 8570 IAT Level II certification (e.g., Security+ CE)
• Strong understanding of Assessment & Authorization (A&A) processes and RMF frameworks
• Hands-on experience with eMASS, RTS, and security compliance documentation
• Knowledge of security architecture, system hardening, vulnerability management, and intrusion detection/prevention
• Experience with network security technologies, including firewalls, IDS/IPS, encryption protocols, and endpoint security solutions
• Proficiency with security tools such as ACAS, Splunk, Nessus, STIG Viewer, HBSS/ESS, eMASS, and other SIEM platforms
• Strong technical writing and editing skills, with a high level of attention to detail

Compensation

$75,000+