Information Security Engineer Satellite Industry

 

Information Security Engineer - Satellite Industry  (Contractor Position) 
 
Location: Arlington, Virginia (Washington, DC Metro Area)
 
This email address is being protected from spambots. You need JavaScript enabled to view it.
 
Chronos Consulting is part of the Coberon Chronos Group, an award-winning global leader in permanent and temporary staffing, RPO and business process automation solutions for global multinationals. The Group owns and operates 41 offices worldwide.
 
Chronos Consulting’s client is a fast growing firm focused in the intersection of commercial and government satellite communications business, technical and policy solutions. 
 
The Role:
 
Reporting to the Chief Commercial Officer, you will be responsible for developing and performing IT security governance activities, supporting a suite of services for Commercial Satellite customers into the Department of Defense and Federal Government. The ideal candidate will have developed and implemented an IT Security audit program, conducted technical hands-on audits, and developed IT security policy that support business objectives. 
 
Plan, execute, and lead hands-on IT security technical audits to monitor compliance of systems to NIST 800-53, NIST 800-171, DoDI 8500.2 and DoD Risk Management Framework IT security standards
 
Evaluate the system’s technical controls and policy compliance against internal and third party standards to deliver compliance audits that treat security risks related to major business and technology initiatives
 
Work with key stakeholders to create risk reduction tactics and treatment plans based on the audit results; and track these efforts to reduce the organization’s overall risk and/or increase the security posture
 
Provide analysis for maintaining and improving the information security policies, plans, design changes, and other relevant documents within compliance of required standards
 
Offer advice and recommendations for IT device hardening (e.g. Network, Desktop, Server, and application)
 
 
 
The Requirements: 
 
Bachelor’s degree or demonstrated equivalent experience combined with 5 + years of IT Security work experience
 
U.S. Citizen (eligible for security clearance)
 
Working knowledge of information security auditing principles and standards, to include IT systems security, network devices, and application systems control
 
Significant experience in the design of IT audit and assessment processes such that they are conducted in a standardized, objective, comprehensive, measurable, and repeatable met
 
Experience in working with DoD RMF, DoDI 8500.2, NIST 800-171 and NIST 800-53
 
Demonstrated experience in technical, hands-on IT security control,  design of IT security policies and related system/process controls,  working with control frameworks and risk assessment practices
 
Functional understanding of TCP/IP networks and firewalls configuration
 
Strong verbal and written communication skills to interface with technical and business stakeholders
 
Desired:  Experience in IT system design and architecture, technical risk assessment experience, familiarity with Public Key Infrastructure or Identity Federation Technologies (SAML, etc.) , SIEM experience and CISSP, CISA, or other Technical certifications are a plus
 
Limited domestic and international travel may be required