Senior Cyber Security Engineer

Description & Requirements

Maximus is searching for a Senior Cyber Security Engineer to join a DoD program in Arlington, VA.

This position serves as a subject matter expert, possessing in-depth knowledge of cybersecurity.

This position is responsible for advising on a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by highly classified information systems to determine the overall effectiveness of the controls.

This position is contingent upon award, is on-site, and requires an active TS/SCI clearance.

Maximus TCS (Technology and Consulting Services) Internal Job Profile Code: TCS041, T5, Band 8

Job-Specific Responsibilities:



* Provides high-level subject matter expertise for work described in the task.


* Applies principles, methods, and knowledge of specific functional areas of expertise to specific task order requirements.

Provides advice on esoteric problems which require extensive knowledge of the Risk Management Framework.

Designs and prepares technical reports, studies, and related documentation, makes charts and graphs to record results, prepares and delivers presentations, training, and briefings.


* Recognized for strong expertise in industry issues and trends.

Utilizes functional area expertise, gained through direct industry experience, to assess the operational and functional baseline of an organization and its organizational components.

Works with senior managers and executives to provide industry vision and strategic direction regarding their enterprise.


* Performs research and applies expertise and knowledge to technical projects, finding innovative, cost-effective means to improve techniques, procedures, and/or products and technologies.


* Collaborating with key stakeholders to ensure security engineering initiatives are aligned with the operational needs of the organization.


* Developing specifications to ensure risk, compliance, and assurance efforts conform with confidentiality, integrity, and availability requirements at the software application, system, and network environment level.


* Oversee security reviews and identifying security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy.


* Performing risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change.


* Planning and conducting security authorization reviews and assurance case development for initial installation of systems and networks


* Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities


* Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of def...