Security Engineer Team Lead - Top Secret/SCI with Security Clearance

---

Job description

Location: Bethesda, MD Category: Cyber Security Architecture and Engineering Travel Required: No Remote Type: Hybrid Remote Clearance: Top Secret/SCI Sunayu LLC has an an exciting opening for you as our next TS/SCI Security Engineer Team Lead working across several Task Orders under the DOMEX Technology Platform (DTP) contract supporting NMEC. Have impact as part of a mission focused, solutions oriented, and adaptive team that values innovation, collaboration, and professional development. As the Security Engineer Technical Lead, your job is to provide technical security expertise in our cloud and on-premise infrastructure. You will lean on your experience with security technologies and industry best practices while employing effective security solutions. You are a demonstrated leader, skilled at achieving cross functional collaboration in a dynamic and fast paced environment. While most work is conducted on-site at our client location in Bethesda, MD, we offer a flexible schedule and, occasionally, some tasks may be performed remotely. Percentage of remote work will vary based on client requirements/deliverables. As an integral member of the team, you will work closely with DTP Program Management, Task Order Leads, and Security Engineers on the following key tasks: Provide management oversight and coordination of DTP Security Team across multiple Task Orders Provide technical guidance to team members while employing security solutions
Directly interact with DIA and NMEC Security POCs
Create, improve, and maintain security policies and procedures
Provide operating system hardening and system patching guidance based on DISA STIGs and NIST publications
Analyze security incidents and provide recommendations for resolution
Strong knowledge and experience in software development in an Agile or SAFe environment
Serve as Scrum Master for the Security Team
Manage individual project priorities, deliverables, and deadlines.
Foster an environment of collaboration with the different team members in the goal of providing quality service and product to our customer. You demonstrate a solid understanding of security best practices and meet the following qualifications: BS degree and 12+ years of prior relevant experience or Masters with 10+ years of prior relevant experience
An active TS/SCI clearance with the ability to obtain/maintain a Polygraph
Have at least one of the following DoD 8570.01-M IASAE Level II certifications: CISSP, CISSP-ISSAP, CISSP-ISSEP, CSSLP, or CASP+ CE. NOTE: the CISSP Associate is not acceptable
Familiarity with NIST Special Publications e.g. NIST SP 800-27, 30, 37, 53, 60
Experience with CNSS publication CNSSI 1253
Experience with incident response plans, plans of actions and milestones (POA&Ms), risk management plans, and vulnerability management plans
Experience establishing and maintaining a System Security Engineering (SSE) management process to integrate security and privacy controls into complex hardware and software systems
Experience managing a team of Cyber Security Engineers (CSEs) and Information System Security Officers (ISSOs)
Experience supporting DoD/IC systems through the entire Risk Management Framework Plus (RMF) process
Experience using Tenable Security Center and all components
Experience with technologies such as Linux, Windows, firewalls, gateways, proxies, VPCs, and public key infrastructure.
Strong analytical, communication, problem-solving, and interpersonal skills You will wow us even more if you have some of these: An active TS/SCI clearance with Poly
Certified Scrum Master (CSM) or SAFe Scrum Master (SSM) certification
Experience with SAFe methodology
Successfully achieved ATO under RMF+
Experience working in Agile and DevOpsSec environments
Experience with big data applications
Experience with Jira and Confluence
Experience with OIDC or Oauth2
Experience with any of the following technologies:
Kubernetes, Rancher, or Cloudera
CI/CD tools like Jenkins or Gitlab
Elasticsearch
Active Directory
SQL and NoSQL databases
Scripting languages like bash, python, or PowerShell

<!– job description page –>