Cyber Security Engineer/Architect
MAXIMUS Federal – Eligibility Appeals Operations Support (EAOS) is looking for Cyber Security Engineer/Architect with experience architecting, developing and implementing enterprise security solutions within the public sector.
The individual must have over 5 years of experience engineering and architecture technology and cyber security solutions with hands on experience in cloud and on-prem environments. Ideal candidate will have a wide range of experience architecting and implementing cyber security solutions, knowledge of NIST Risk Management Framework (RMF), Security Assessment and Authorization (SA&A), and FedRAMP.
In addition, the Cyber Security Engineer/Architect role will be a subject matter expert (SME) in supporting agile teams in identifying current threats, mitigate vulnerabilities, and anticipate future cybersecurity needs.
The candidate must be able to operate independently and demonstrate experience to architect, develop and implement security solutions.
•Design, implement, test and operate security solutions in compliance with technical reference architecture and minimal security controls
•Analyze information systems to ensure that appropriate security safeguards have been included in the systems design and architecture
•Collaborate with Information Security Management to document identified issues and risks, and appropriate remediation plans.
•The candidate will provide security technical solution support during proposal development
process, to include technology stack selection, solution architecture, and implementation methodology
•The candidate will be required to develop and provide presentations and demonstrations of technology solutions to both internal and external stakeholders
•Knowledge of potential vulnerabilities and threats to existing web, applications, database, and operating system technologies
•Must have participated in architecting and implementing security solutions for multiple federal projects
•Strong working knowledge of cloud infrastructure and security best practices, such as Amazon Web Services, Microsoft Azure, etc.
•Strong working knowledge of IAM technologies and services such as Active Directory, Lightweight Directory Access Protocol (LDAP) and Amazon Web Service (AWS) IAM
•Direct, hands-on experience or a strong working knowledge of application and network vulnerability management tools
•Direct, hands-on experience or strong working knowledge of managing security infrastructure — e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology
•Experience with automating security testing with the use of scripting and APIs for a CI/CD pipeline
Education and Experience
•Proven experience communicating with non-technical business personnel and ability to interact and work in a team environment.
•Three (3) or more years of experience as a Security Engineer; with a focus on cloud infrastructure
•Should have (3) or more years of experience using Agile development methodology, and working experience in a DevSecOps environment is highly desired
•Bachelor's Degree in Information Technology, Information Security, Information Assurance, Information Management or equivalent related work experience.
Skills and Knowledge
•Solid understanding of NIST SP 800-37, SP 800-53, SP 800-63, SP 800-137, and SP 800-160
•Strong team skills and ability to listen, build consensus, and collaborate with business, IT and security groups
•Strong analytical and quantitative skills
•Strong knowledge in identifying and assessing Information Security risk and development of appropriate approaches to mitigate risk
•Ability to deal with and meet tight deadlines with limited resources
•Ability to thrive in an environment of change and manage multiple tasks and responsibilities simultaneously
•Prefer knowledge and experience implementing CMS Acceptable Risk Safeguards (ARS) and Technical Reference Architecture (TRA)