Job Description
La Jolla Logic (LJL) is an advanced technology and information system security solutions firm founded in 2011 in San Diego, CA. LJL's mission is to pioneer innovative, high-quality and best value specialty technology and engineering services to customers in the federal government and commercial marketplace.
We are an SBA Certified 8(a) Woman-Owned Small Business, awarded San Diego’s WOSB of the Year 2019 by the US SBA, and the SBA District Director’s Technology Sector Award in 2018. LJL has a reputation for performance to the highest standard, specializing in high-end cybersecurity engineering solutions, to include Machine Learning Technology, Artificial Intelligence R&D, Secure Enterprise Architecture Design, Cross Domain Solutions (CDS) , DoD Cloud Architecture development and deployment (AWS, Azure), Structured Data Models and Inference Engine Technology, System Security Engineering and System Accreditations (RMF & DIACAP), Advanced Technology Concept Development and Feasibility Assessments, Information Systems Security Manager/Officer (ISSM/ISSO) Services, and NIST 800-171 Compliance.
We are looking for a CYBERSECURITY ENGINEER with RMF EXPERTISE to join our team. The qualified candidate will be working on the security engineering team supporting engineering activities in a rapid development environment to support the specification, development, and application of computer security technologies, cybersecurity and information assurance management techniques to DoD and Intelligence Community (IC) systems. As a Cybersecurity engineer on our project, you’ll analyze the cyber posture of complex DoD/IC systems, provide critical expertise to mitigate Cyber risk, and develop solutions to ensure these programs support mission critical operations and deliver needed Cybersecurity functionality.
POSITION DUTIES INCLUDE:
Leading and supporting cyber system engineering teams
Leading Assessment and Authorization (A&A) activities for DoD and Intelligence Systems in accordance with Risk Management Framework and ICD-503 guidelines
Coordinate with Echelon II, SCA and NAO to facilitate system authorization
Supporting offensive architecture analysis and design of defense-in-depth solutions
Developing and assessing system security plans including, security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones
Conducting and/or analyzing vulnerability assessments to validate system compliance with RMF controls and DISA Security Technical Information Guidelines (STIGS)
Analyzing static code scans and dynamic code scans to validate Application Security and Development STIG compliance
Leading and coordinating security test event teams to achieve accreditation milestones
Verifying and validating vulnerability resolutions and/or mitigations
Effectively communicate work plans, milestones (POAM), and obstacles to clients; able to communicate, explain, or defend ideas or information clearly. Listen to others and recognize potential miscommunications, offer clarity.
Ability to effectively develop system security plans, procedures, and other security documentation.
Resolve non-routine problems with area of assigned responsibility and timely direct complex problems, questions, or complaints to Program Manager.
Ability to analyze disparate data and produce a readable, understandable summary to Program Manager, with recommendations for corrective action, as needed; evaluate effectiveness of applied security control
REQUIREMENTS: