Senior Information Systems Security Engineer (ISSE) (Cyber) SME with Security Clearance

---

Job description

Gemini Industries Inc. provides technical, management and operations services to support National Security projects. We provide rapid response to the critical needs of our customers and those they serve. We perform analyses and develop operations plans to anticipate and prepare for the future. And we deliver advanced technology to improve our customer's success in executing its mission. Gemini seeks innovative, results-oriented individuals with the creativity, initiative, and intelligence to overcome any challenge and succeed. Members of the Gemini team thrive in a culture that is anticipatory, agile, and schedule-driven; with a sense of urgency and a drive to succeed. Our culture involves: The best and brightest personnel Work at a high operations tempo Integrated teams delivering rapid solutions. An attitude that balances "I can make it better" with "As long as we succeed." Senior Information Systems Security Engineer (ISSE) (Cybersecurity) (SME)
Location: Fairfax, VA (Telework eligible) Clearance: TS Clearance, SCI Eligible Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field (Master's Degree in STEM preferred) Outcomes: The successful candidate is expected to accomplish the following outcomes during the first year in the position: Formally track all tasks, to include: assigned by, suspense, status, and comments on all assigned tasks through completion and be prepared to brief upon request. Develop digital continuity folders and files that include standard operating procedures, workflows and POC lists to accomplish all tasks. Create 2-3 products beyond the client's requirements that positively impact the client to either increase efficiency, effectiveness, or innovation. Master position tasks within 60 days and exceed requirements within 90 days. Responsibilities: The Senior Information Systems Security Engineer (SME) will directly support the Secretary of the Air Force (SAF) / Concept Development Management Office (CDM) Mission Infrastructure Innovation Directorate (CDMM), Cyber Data Recon & Exploitation Division (CDRE). Mission Infrastructure Innovation Directorate provides design, configuration, accreditation and implementation of mission and R&D information management systems and cloud-based solutions that support defense and intelligence priorities as well as internal business processes and mission functions, network communications, database management, security accreditation, and workflow management. The Information Systems Security Engineer (ISSE) (SME) is responsible for designing, implementing, and maintaining security controls to protect the organization's information systems in accordance with Department of Defense (DoD) requirements. This role involves collaborating with various stakeholders to ensure that security measures are effectively integrated into the system development lifecycle (SDLC) and that compliance with relevant regulations is achieved. This is a unique hands-on technical role in such that the ISSE is responsible for compliance-based cybersecurity engineering yet participates in advanced cyber defense concept development (50% compliance; 50% vulnerability research). This position directly supports advanced cybersecurity research for cyber threat hunting, and advanced analysis and use of AI/ML based on system anomalies. Additionally, the ISSE shall provide management and professional support, assistance, advice, to support the efficient and effective management and operation of the organization, activities, or systems specifically related to cybersecurity in all phases of Risk Management Framework (RMF). This role will be the technical component supporting Division Chief, Cyber Data Recon & Exploitation and the ISSM. Specific responsibilities include but are not limited to: Develop strategies to address potential solutions to complex problems. Develop and document requirements from project inception to conclusion. Provide strategic advice, technical guidance, and expertise to program and project staff. Expertise in application of security controls and all technical mechanisms required by DoD RMF/JSIG and building security assessment procedures and body of evidence. Expertise in engineering, administration, and configuration of Nessus scans and policies, Trellix/McAfee back end and policies, Splunk or Elastic SIEMs administration, engineering, and query languages (SPL, SQL, or ES/QL) for analysis. Expertise in application of STIGs, and various security mechanisms within Windows and Linux. Expertise in vulnerability identification and analysis. Proficiency of administration of AWS cloud console and cybersecurity mechanisms, and STIG/SCAP compliance checker. Ability to learn and integrate AWS artificial intelligence service, tools, and features outputs into security tools. Proficiency in incident response execution Ability to operate within a research and development environment and identify advanced cybersecurity threats. Provide detailed analysis, evaluation, and recommendations for improvements, optimization, and/or maintenance efforts for specified mission-critical challenges/issues as related to system vulnerabilities and remediation. Assist with defense and intelligence enterprise activities to address unconventional challenges by developing complementary public/private cooperation ideas. Coordinates cross-functional teams through meetings and progress measuring activities. Participates in project performance review meetings and discussions. Support a cross-functional team with financial management and administrative support. Assist in development of white papers on various topics to support the directorate's initiatives, as requested. Qualifications: The candidate must have the following qualifications: Minimum of 7 years of experience in information security, with at least 3 years in hands on technical defensive or offensive roles Excellent oral, written, and interpersonal communication skills Ability to work under pressure and meet deadlines in a rapidly changing and demanding environment. Detail oriented, flexible, ability to context switch. Expert in various domains of Information Technology (cloud, cybersecurity, networking, etc.) and ability to context switch from strategic intent and tactical emplacement of cyber mechanisms Expert in two of the following domains - vulnerability analysis and vulnerability management, SIEM operations and defensive cyber operations, red/blue/purple team/threat hunting operations Expert in body of evidence building and assessment and authorization activities within DoD environments. Expert in cybersecurity engineering as related to Risk Management Framework lifecycle, security control enforcement, body of evidence creation and continuous monitoring, assessment and authorization processes, and ability to operate in overlapping security control and overlay environments (CNSSI 1253, Executive Order 12333, PII/Privacy, HIPAA, Intelligence, etc.) Experience in overlapping domains at multiple classifications including vulnerability analysis, SIEM operations, cyber network defense, cyber operations, malware analysis, information systems security management or engineering. Proficiency with Xacta or Emass. Experience with DoD Joint Special Access Program Implementation Guide (JSIG), AF Cyber policies, NIST SP 800 Series, and CNSSI 1253 security controls and overlays. Experience operating in cloud cybersecurity and shared responsibility models, networking, and/or data experience (required) DoD 8570.01-M IAM Level III certification (CISSP or CASP) (required) The following qualifications are desired: Experience with DEVSECOPS, containerization, and zero-trust architectures (preferred) Offensive Security or SANs certifications (OSCP, GCIA, GCIH, GPEN, GXPN, GDAT, etc.) (preferred) Cloud Service Provider Associate or Professional Certifications (preferred) Splunk or Elastic Certifications (preferred) Experience in cybersecurity red/blue/purple/threat hunting teams (preferred) Experience with Department of Defense (DoD) and/or AF administrative processes (preferred) Travel: Some local travel may be expected. Other Requirements: We seek: Highly motivated self-starters Resourceful individuals with extraordinary intellectual capability and the ability to rapidly learn and apply new concepts. Individuals who have a "let me try" attitude and are resilient, present an opinion/position, justify it, and then accept whatever decision is made and charge forward. Individuals who view criticism as an opportunity to improve ("let me try again") Individuals who think and create, enhancing the company with a steady flow of fresh ideas, perspective, and energy. Direct Inquiries and Resumes to our Talent Management Team:
Yashira Santiago
Gemini Industries Inc.
Telephone: 286 - 4777
Gemini Industries Inc. is proud to be an Equal Opportunity / Affirmative Action Employer. We are committed to abiding by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, national origin, protected veteran status or disability and any other basis protected by applicable law.

<!– job description page –>