Sayres & Associates
  • San Diego, CA, USA
  • Full Time

Sayres and Associates Corporation (Sayres) is a dynamic, Native American-owned, Service Disabled Veteran Owned Small Business that has been providing excellence in service to the Federal Government since 2001. We offer a broad spectrum of security, management, technical and engineering services including Program Administration, Policy Analysis, Counterintelligence Cyber Security, Acquisition Management, Acquisition Logistics, Integrated Product Support, Production Management, Business Financial Management, Systems Engineering, Systems Integration, System Test and Evaluation. Sayres is headquartered in Washington, DC with offices throughout the United States and has a presence abroad.
 
Our success can be attributed first to a proven track record of performance excellence based on our customer-focused approach to services. We have demonstrated experience effectively managing large contractor teams across multiple functional areas for major programs. Perhaps most importantly, Sayres offers financial stability and organizational maturity comparable to a large company, coupled with the agility of a small business, providing cost effective solutions and best value to our customers.
 
Awarded the U.S. Small Business Administration, Washington Metropolitan District Office's 8(a) Graduate of the Year for 2017, Sayres and Associates Corporation continues to grow in a highly competitive environment while exceeding customers' expectations and providing a work experience conducive to personal and professional development. 

The Senior ISSE will apply a broad understanding of cyber security engineering services to conceptualize, design and build secure technical solutions, including applications, systems, architectures and infrastructure that are operationally viable and efficient. The Senior ISSE will work with engineers to design and document secure implementation of NIST RMF 800-53, CYBERSAFE and other applicable overlay controls, Information Assurance Technical Authority (IATA) Defense in Depth Functional Implementation Architecture (DFIA) Standard, IATA Implementation Standards and SPAWAR Systems Command DFIA Implementation and Execution guidance, develop and document risks for controls or standards not being met, and develop mitigations that minimize impact, likelihood, or risk. Analyze emerging technologies and design, build and integrate architectures and solutions to enable secure implementation of new technologies. May provide work leadership for lower level employees.

This position description is only meant to be a representative summary of the major responsibilities and accountabilities performed by the incumbents of this position. The incumbents may be requested to perform position-related tasks other than those stated in this description.

Duties and Responsibilities:

  • Work with engineers and system engineering cybersecurity leads to design and document secure implementation of NIST RMF 800-53, CYBERSAFE and other applicable overlay controls, Information Assurance Technical Authority (IATA) Defense in Depth Functional Implementation Architecture (DFIA) Standard, IATA Implementation Standards and SPAWAR Systems Command DFIA Implementation and Execution guidance, develop and document risks for controls or standards not being met, and develop mitigations that minimize impact, likelihood, or risk.
  • Apply knowledge of Cybersecurity engineering services to conceptualize, design, and build secure technical solutions, including applications, systems, architectures, and infrastructure that are operationally viable and efficient.
  • As part of a Cybersecurity engineering design team, advise on the design and innovative integration of Cybersecurity toolsets to enable more automated discovery, remediation, and alerting of network and device vulnerabilities, as a means of improving the security posture while reducing manpower requirements.
  • Support performing ongoing Cybersecurity assessments to identify vulnerabilities and compliance issues.
  • Analyze emerging technologies and design and build architectures and solutions to enable secure implementation of new technologies.
  • Participation in ad hoc Cybersecurity data calls.
  • Provide work leadership for lower level employees.

Required Qualifications:

  • 10+ years' experience in network systems engineering.
  • Expertise and abilities analyzing user needs and current security regulations and guidelines to determine Information Assurance (IA) functional requirements.
  • Expertise and abilities developing security architecture artifacts to support engineering efforts.
  • Expertise and abilities performing functional allocation to identify tasks that must be completed and interrelationships among those tasks.
  • Expertise and abilities gathering and organizing technical information about an organization's missions, goals, and requirements; existing security products; and ongoing IA programs.
  • Expertise and abilities engineering systems that are accreditable via DoD IA Certification and Accreditation Program (DIACAP) and the Risk Management Framework (RMF).
  • Knowledge of security engineering principles used to manage risks related to the use, processing, storage, and transmission of information or data.
  • Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
  • Skill in designing countermeasures to identified security risks.
  • Expertise and abilities developing security engineering practices to ensure that systems are delivered and deployed in a secure and accreditable state.
  • Skill in creating policies that reflect system security objectives.
  • Knowledge of the systems engineering process.
  • Knowledge of the enterprise information technology (IT) architecture.
  • Knowledge of Cybersecurity tools, network concepts, and Cyber risk assessment.
  • Attention to detail and ability to develop high quality technical documentation and reports that are complete and accurate.
  • Ability to present recommendations and solutions to clients.
  • Active Secret clearance.
  • Bachelors of Science degree in Engineering or Cyber Security; MA or MS degree in an IT, Cyber, or Engineering field a plus.
  • CISSP Certification.

Desired Qualifications:

  • MA or MS degree in an IT, Cyber, or Engineering field.
  • 3+ years of experience with Cyber vulnerability assessment and security tools.
  • 3+ years of experience with Cybersecurity testing, Cyber risk assessment, vulnerability remediation, and software engineering.
  • Experience with output from automated vulnerability assessment tools, including Nessus and Assured Compliance Assessment Solution (ACAS) and Security Content Automation Protocol (SCAP) and reviewing manual testing procedures using DoD STIGs, SRGs, and checklists collaborations, etc.
  • Expertise and abilities analyzing and defining IA security requirements for Multi-Level Security (MLS) systems and non-MLS systems.
  • Expertise and abilities designing, developing, engineering, and implementing solutions to MLS and non-MLS requirements.
  • Ports, Protocols and Services Management (PPSM) registration experience.
  • Knowledge of Agile software development framework.
  • Advanced Excel Proficiency.
  • IA Workforce 8570 Certification.
  • Other technical certifications.
  • Ability to obtain TS clearances (eligible).

All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, gender identity, disability or veteran status.

 

 

Sayres & Associates
  • Apply Now

    with our quick 3 minute Application!

  • * Fields Are Required

    What is your full name?

    How can we contact you?

    If you do not agree, you will not be able to receive text messages from this employer.
  • Sign Up For Job Alerts!

  • Share this Page
  • Facebook Twitter LinkedIn Email
.

All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national

origin, age, gender identity, disability or veteran status.

Logo Home About Us Capabilities Contracts Locations Careers Contact