Staff Security Engineer

MANTECH seeks a motivated, career and customer-oriented Staff Security Engineer to join our team in Chantilly, VA. You will support system security architecture and assurance by helping to implement robust cybersecurity frameworks, assess risk, and support system compliance activities. By leveraging your strong technical background, you will support the improvement and sustainment of mission-driven IT solutions that enable secure enterprise operations.
 

In this role, you will assist architects and system developers in identifying and implementing appropriate information security functionality to ensure consistent application of government security policy. You will perform and review technical security assessments of computing environments to identify vulnerabilities and recommend mitigation strategies. Furthermore, you will evaluate proposed software, hardware, firmware, and infrastructure, including DEVSECOPS, containerization, and zero-trust architectures, to ensure compliance with applicable security guidelines.
 

Responsibilities include but are not limited to: 

• Developing and providing Information Assurance (IA) updates and Assessment and Authorization (A&A) documentation while running Tenable scans and supporting Authority to Operate (ATO) renewals

• Using Splunk to collect weekly CONMONs and updating Plans of Action & Milestones (POA&Ms) to ensure continuous monitoring compliance

• Assessing and closing allocated controls with Bodies of Evidence (BOEs) and applying required Security Technical Implementation Guides (STIGs)

• Working with network service providers to develop and maintain robust network architecture diagrams for cyber defense capabilities

• Evaluating and recommending technology upgrades to support performance improvements and alignment with industry best practices

• Monitoring and analyzing performance and faults while proposing solutions for system optimization and collaborating with stakeholders to coordinate technical information

• Supporting A&A activities related to network security technologies and maintaining a robust library of required documentation
   

Minimum Qualifications: 

• Bachelor’s degree or 4+ years of additional work experience in lieu of a degree

• 2+ years of experience in IT and/or Cyber Security

• IAT Level II certification or higher (Security+, Net+, etc.) or the ability to obtain certification within 6 months of hire

• Experience creating, maintaining, and communicating complex information technology and security documentation

• Experience providing ISSE support and working closely with ISSMs and ISSOs to integrate security controls and ensure compliance with RMF and NIST 800-53 standards

• Experience identifying security requirements for the proper handling of Government data to ensure systems meet all requirements

• Experience with technologies supporting large-scale enterprise deployments or data centers and inventorying complex networks
   

Preferred Qualifications: 

• Experience implementing and supporting complex, multi-component software solutions across a large team

• Experience deploying enterprise security software including firewalls, intrusion prevention systems (IPS), and virtualization platforms

• Knowledge of Windows and Linux systems, TCP/IP networking, 802.1x, and core network security principles

• Experience with the Sponsor’s primary cyber risk and compliance automation tools
   

Clearance Requirements: 

• An active TS/SCI with polygraph is required for this position
   

Physical Requirements: 

• Must be able to remain in a stationary position 50%

• Needs to occasionally move about inside the office to access file cabinets, office machinery, etc.

• Frequently communicates with co-workers, management, and customers, which may involve delivering presentations

• Must be able to exchange accurate information in these situations