Junior Cybersecurity Information Assurance Engineer with Security Clearance

---

Job description

Cybersecurity Information Assurance Engineer (Junior) This position requires the ability to obtain a Public Trust We are seeking a highly motivated Cybersecurity Information Assurance Engineer (Junior) to serve as an Enterprise Vulnerability Management Analyst (Junior). The successful candidate will support the Task Lead in auditing new and existing information systems, ensuring that appropriate controls are in place and that systems align with corporate cybersecurity standards. Under general supervision, this role focuses on assisting with vulnerability management efforts, coordinating with the CDM integrator, and supporting the use of tools and processes to reduce security risks and improve compliance with federal standards such as FISMA. Compensation & Benefits: Estimated Starting Salary Range for Cybersecurity Information Assurance Engineer (Junior): $125,000-$130,000 Pay commensurate with experience. Full time benefits include Medical, Dental, Vision, 401K and other possible benefits as provided. Benefits are subject to change with or without notice. Cybersecurity Information Assurance Engineer (Junior) Responsibilities Include: Audit new and existing information systems applications to ensure appropriate security controls are in place, processing is efficient, and systems are compliant with corporate cybersecurity standards. Support the Task Lead in coordinating with the customer's CDM Integrator to align CDM capabilities with the customer's cybersecurity strategy and roadmap. Assist in the development and maintenance of Standard Operating Procedures (SOPs) to guide the use of hardware asset management (HWAM), software asset management (SWAM), configuration settings management (CSM), and vulnerability management (VUL) tools. Help reduce CDM Agency-Wide Adaptive Risk Enumeration (AWARE) scores, improve FISMA metrics, and align with customer cybersecurity goals. Manage account/access control, managed privileges (PRIV), trust determination (TRUST), credentials and authentication (CRED), and security-related training (BEHAVE) to ensure proper access management and compliance. Assist in establishing streamlined processes for the intake, prioritization, and analysis of vulnerability reports from various sources such as automated scanning tools, security researchers, and internal assessments. Manage network and perimeter components, host and device security, data at rest and in transit, and monitor user behavior and activities. Oversee management of security events (MNGEVT), the operation, monitoring, and improvement (OMI) of security controls, and the design and integration of security (DBS). Support boundary protection (BOUND), supply chain risk management (SCRM), and ongoing authorization efforts. Assist in the protection of data using data discovery/classification (DISC), data protection (PROT), data loss prevention (DLP), data breach/spillage mitigation (MIT), and information rights management (IRM). Help develop the CDM Operational Methodology, ensuring continuous asset discovery, risk monitoring, environmental change analysis, and reporting to stakeholders. Utilize the suite of CDM tools to identify and assess risks to enterprise security, providing insights for mitigation efforts. Assist in analyzing existing CDM tools, recommend additional coverage or improvements based on the cybersecurity strategy, and help standardize tool operations. Analyze unused or misused licenses and provide recommendations for effective license management. Develop actionable risk reports using data generated by CDM tools and present insights to stakeholders for improving cybersecurity posture. Performs other job-related duties as assigned Cybersecurity Information Assurance Engineer (Junior) Experience, Education, Skills, Abilities requested: Bachelor's degree in Cybersecurity, Information Technology, or a related field. Minimum 2 years of experience in cybersecurity, focusing on information assurance, vulnerability management, and enterprise security operations. IAT Level II certification (e.g., CompTIA Security+, GIAC, or equivalent). Familiarity with Continuous Diagnostics and Mitigation (CDM) tools and the use of hardware, software, and configuration settings management for enterprise systems. Strong understanding of FISMA and other federal cybersecurity frameworks and compliance requirements. Ability to manage account and privilege access controls, security credentialing, and trust determination processes. Experience with automated vulnerability scanning tools and analyzing reports to prioritize and mitigate security risks. Knowledge of boundary protection, data protection, supply chain risk management, and security event monitoring processes. Exposure to data loss prevention (DLP) and incident response strategies preferred. Experience supporting license management and optimizing the use of vulnerability management tools preferred. Must pass pre-employment qualifications of Cherokee Federal Company Information: Cherokee United Services (CUS) is a part of Cherokee Federal - the division of tribally owned federal contracting companies owned by Cherokee Nation Businesses. As a trusted partner for more than 60 federal clients, Cherokee Federal LLCs are focused on building a brighter future, solving complex challenges, and serving the government's mission with compassion and heart. To learn more about CUS, visit Cherokee Federal is a military friendly employer. Veterans and active military transitioning to civilian status are encouraged to apply. 5Please visit for information regarding our Affirmative Action and Equal Opportunity Employer Statement, and Accommodation request. Many of our job openings require access to government buildings or military installations. Candidates must pass pre-employment qualifications of Cherokee Federal.

<!– job description page –>