Breakpoint Labs is seeking a Security Engineer to perform remote and on-site functions of Risk Management Framework (RMF) in preparation for validation activities for Information Systems (IS) using standards such as DoDI 8510.01, 8500.01, CNSSI 1253, NIST Publications and BBPs. The Security Engineer will provide technical and non-technical cybersecurity expertise to facilitate validation readiness and provide education to personnel responsible for the integration of RMF into the organization’s security operations, for a more holistic and sustainable security posture throughout the IS lifecycle. Service may include, but is not limited to, service implementation, system baseline configuration/system hardening, composition or revision of documentation, and overarching cybersecurity recommendations.
Location: Remote/location of your choice. Must be willing to travel 5% - 25% as needed.
Identify technical and non-technical requirements, performing an audit of ISs to verify compliance status; review technical configuration and implementation with a compliance focus.
Document any technical or non-technical deficiencies and create a high-level Work Breakdown Structure (WBS) in support of deficiency remediation activities and timelines.
Where necessary, recommend modification to existing documentation or draft policy/procedure documentation in support of meeting requirements and accurately depicting the IS state.
Assist and educate system owners, information security personnel, and system administrators on technical and non-technical issues.
Demonstrate technical experience in identifying vulnerabilities or misconfigurations across a wide variety of technologies.
Develop and utilize templates and/or educational material to realize efficiencies in service.
Recommend mitigating strategies to identify vulnerabilities.
Communicate technical information, often in the form of verbal updates, technical reports, and briefings.
Writing/documentation, presentation, and public speaking skills are required.
Employ organizational and interpersonal skills to succeed in a fast-paced environment.
- Must possess DoD Secret Clearance
- Experience in Information System Security Manager (ISSM) traditional duties
- Minimum of five (5) years experience of cybersecurity experience.
- Minimum of three (3) years’ experience utilizing NIST standards, such as NIST 800-53 and NIST 800-37.
- IASAE-III certification required / CISSP-ISSEP
- Systems engineering experience strongly preferred
- Ability and willingness to travel both in the Continental US (CONUS) and Outside the US (OCONUS)
About BreakPoint Labs
BreakPoint Labs is a growing cybersecurity services company focused on ‘high-end’
support to DoD, Federal, and commercial clients. Headquartered in the National Capital
Region, but with a presence in more than 14 states, BreakPoint Labs provides clients
with services in three core competencies: Cybersecurity Assessments, Defensive Cyber Operations, and Research and Development. We offer a full array of benefits consisting of medical, dental, and vision coverage in addition to a matching 401(k) plan. We are a company that encourages employee’s career path opportunities by providing $5,000 educational reimbursements yearly, and also providing training and certification reimbursements as well.