Company Overview
Scientific Research Corporation is an advanced engineering company that was founded in 1988 to provide innovative solutions to the U.S. Government, private industry, and international markets. Since its inception, SRC has continued to successfully meet emerging challenges in the marketplace and consistently deliver the highest quality products and technical services to its customers. SRC’s business activities are focused on a broad range of information, communications, intelligence, electronic warfare, simulation, training, and instrumentation systems. With corporate headquarters in Atlanta, Georgia, and engineering offices located across the U.S., SRC is dedicated to a full range of engineering, integration, testing, support, and research and development activities. Our laboratories and test facilities reflect state-of-the-art technology and mirror both commercial and defense operational environments.
About the job
Estimated Starting Salary Range: USD $100,050.00/Yr. – USD $166,750.00/Yr. Salary to be determined by the education, experience, knowledge, skills, and abilities of the applicant, internal equity, and alignment with market data.
About Us
Scientific Research Corporation is an advanced information technology and engineering company that provides innovative products and services to government and private industry, as well as independent institutions. At the core of our capabilities is a seasoned team of highly skilled engineers and scientists with multidisciplinary backgrounds. This team is challenged daily to provide cutting edge technology solutions to our clients.
SRC offers a generous benefit package, including medical, dental, and vision plans, 401(k) with a company match, life insurance, vacation and sick paid time off accruals starting at 10 days of vacation and 5 days of sick leave annually, 11 paid holidays, tuition reimbursement, and a work environment that encourages excellence and more. For positions requiring a security clearance, selected applicants will be subject to a government security investigation and must meet eligibility requirements for access to classified information.
Requirements
1-2 years combined cybersecurity experience holding one or more of the following roles: ISSO, Cybersecurity Analysts, and/or Systems/Network Administrator.
2+ years of experience working with Windows and/or Linux systems administration.
Bachelors Degree (e.g. Cybersecurity, Engineering, Computer Science, or related IT fields) and Active DoD 8570 Level II Certification (e.g. Security+ CE, CCNA, etc.)
Desired Skills
Skilled in the use of Enterprise Mission Assurance Support Service (eMASS)
Knowledgeable with Supply Chain Cyber Risk Management (SCRM)
Knowledge of cybersecurity principles and DoD requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
Knowledge of IT security principles and methods (e.g., firewalls, demilitarized zones, encryption, zero trust)
Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code)
Description
Scientific Research Corporation (SRC) is an advanced information technology engineering company that provides innovative products and services to government and private industry, as well as independent institutions. At the core of our capabilities is a seasoned team of highly skilled engineers and scientists with multidisciplinary backgrounds. This team is challenged daily to provide cutting edge technology solutions to our clients. SRC is searching for a well-rounded Mid-Level Cybersecurity Engineer test, analyze, evaluate, validate, and verify cybersecurity requirements for Information Technology (IT) systems to support the installation requirements for United States Space Command (USSPACECOM) command and control facilities. Work supporting USSPACECOM will be conducted at the government’s facilities in Colorado Springs, CO. Duties & Responsibilities include:
Evaluate information systems for compliance with Defense Information Security Agency (DISA) Security Technical Implementation Guideline (STIG) and review measures needed to bring systems into compliance.
Conduct Assured Compliance Assessment Solution (ACAS) scans for STIG compliance checks.
Review Information Assurance Vulnerability Alerts (IAVA) for applicability and impact to N-NC.
Develop and/or update the Plan of Action and Milestones (POA&M) to document all known vulnerabilities to correct or mitigate risks.
Analyze changes affecting the organization’s Authorization to Connect (ATC) risk level and cybersecurity posture and report findings
Ensure that security design & distribution actions are evaluated, validated, and implemented as required.
Ensure that cybersecurity requirements are integrated into the continuity planning for that system and/or organization(s)
Evaluate development efforts to ensure that baseline security safeguards are planned for and appropriately installed
Identify alternative information security strategies to address organizational security objectives of cyber taskings
Assist the command ISSM in preparing, distributing, and maintaining plans, instructions, guidance, and standard operating procedures concerning the security of network system(s) operations and cybersecurity practices
Review & recommend policy standards and implementation strategies to ensure procedures and guidelines comply with cybersecurity policies.
Develop, update, and/or review ATO, IATT, ATC documentation to include, but not limited to, Security Plans, Implementation Plans, Test Plans, Test Results (ACAS, STIGs, etc.), POA&M, and Security Assessment Reports (SAR)
Assess system compliance against NIST and DoD security requirements to include the NIST 800-53 controls, and DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs)
Coordinate with other system SMEs to identify and develop authorization boundary diagrams, architecture diagrams, and hardware and software inventories.
How to Apply:
APPLY