Cybersecurity Engineer

Dark Wolf is seeking a Cybersecurity Engineer to conduct independent comprehensive assessments of the security controls employed within an Information technology (IT) system or deployed software to determine the controls’ effectiveness. The Cybersecurity Engineer will perform reviews of security artifacts for system and software authorizations, assessing both the technical and functional adequacy as required for application and software cybersecurity readiness. The Cybersecurity Engineer must have prior experience in assessing tools/applications, systems, and/or enclaves. A successful candidate will have a strong foundational understanding of NIST, DoW, and DAF cybersecurity focused guidance. This position will be based out of San Antonio, TX with hybrid/remote opportunities. Additional responsibilities include:

Key Responsibilities:

• Provide security engineering analysis and recommendations for design implementation
• Perform risk and vulnerability assessments to identify, evaluate and mitigate security risks, threats, and vulnerabilities
• Develop and review the Certificate to Field (CtF) or Continuous Authorization to Operate (cATO) Body of Evidence (BoE) to meet DoW and Federal directives
• Analyze documentation for software approval to include software design documents, architecture diagrams, ports and protocols, and software lists
• Partner with engineers to analyze software, interpret security requirements, and plan effective control implementations
• Formulate clear and concise conclusions on internal controls and business process efficiencies
• Recommend and create policies and procedures to ensure system and software security is maintained
• Provide recommendations and reports to the Security Control Assessor (SCA), Authorizing Official (AO), Chief Information Security Officer (CISO)
• Review network and systems design to ensure security controls are planned and implemented
• Ensure the rigorous application of information security/cybersecurity policies, principles, and practices in the delivery of all IT services

Required Qualifications:

• 5+ years of relevant Cybersecurity experience
• 5+ years of experience creating and/or reviewing policy documentation and technical documentation, such as system architecture, ports and protocols, and configuration documentation
• Cloud Platform experience with at least one service offering from AWS, Azure, or Google Cloud
• Knowledge of security scanning tools (e.g., Static Analysis, Dynamic Analysis, etc.)
• Experience with using Atlassian tools such as Jira and Confluence
• Strong technical writing abilities to author reports for AO and CISO dissemination
• Exudes confidence in providing briefings, presentations, and in conducting/guiding meetings with senior leadership and stakeholders
• B.A. or B.S. Information Security, Computer Science or related discipline
• US Citizenship and currently possess a Secret security clearance 

Desired Qualifications:

• Experience with the DoD Architecture Framework (DoDAF)
• Experience with Fast Track ATO Handbook & AF Continuous ATO Playbook
• Experience with Air Force Risk Management policies/procedures, to include, DODI 8510.01, AFI 17-101
• Experience with Cloud Computing Security Requirements Guide (CC SRG)
• Experience with DoD DevSecOps Fundamentals Playbook
• Experience with DevSecOps Platforms such as GitLab or GitHub
• Understanding of container based application development tools (e.g., Docker, Docker Compose, Kubernetes)