Junior Offensive Cyber Engineer
hackajob, Stafford, VA, United States
MANTECH seeks a Junior Offensive Cyber Engineer to analyze cybersecurity packages using the Risk Management Framework (RMF) process to achieve an Authority to Operate (ATO) while supporting the Marine Corps Systems Command (MCSC) in Quantico, VA. The position is offensive in nature and works closely with government officials and senior engineers.
Responsibilities
Offensive Cyber experience (penetration testing/red team/exploitation) and willingness to perform hands‑on work.
Ensure system documentation reflects current system security configurations, including hardware and software components, data flow, interconnections, ports, protocols, and services.
Perform compliance reviews and analyses to verify adherence to federal requirements such as EO, OMB Memorandums, A‑130, NIST SP 800‑37, 800‑53, FIPS 199, and FIPS 200.
Perform analyses of security implementations for assigned systems, identify gaps, and recommend solutions.
Assist in the preparation and review of documentation, including System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), Authorization Recommendations (ARs), Cybersecurity Strategies (CSSs), and other A&A artifacts.
Research major obstacles related to evolving FISMA requirements and provide recommendations to overcome them.
Provide updates and input to the GRC SharePoint sites, including document uploads, page updates, access requests, and permissions on an ongoing basis.
Minimum Requirements
Bachelor’s degree and at least 2 years of related cybersecurity experience (or an equivalent 2‑year increase in experience to substitute for the degree).
Compliance with DoD 8140 at an intermediate or advanced level, demonstrated by CASP+CE, Security+, CISSP, or CISM certification.
Expert knowledge of NIST guidelines, FISMA, Cybersecurity principles and methodologies, Executive Orders (EOs), OMB Memorandums, Federal, DoD, and CISA Technical Reference Architectures, maturity models, RMF, CSF, and technical knowledge of IT systems.
Preferred Qualifications
USMC or Navy Validator certification.
OSCP / OSEP / CPTS certifications.
Experience with cloud‑based environments and technologies.
Strong analytical and problem‑solving abilities.
Effective communication skills and interpersonal, organizational, and analytical competence.
Clearance Requirements
Must have an active Secret clearance with the ability to obtain Top Secret/SCI.
#J-18808-Ljbffr
Responsibilities
Offensive Cyber experience (penetration testing/red team/exploitation) and willingness to perform hands‑on work.
Ensure system documentation reflects current system security configurations, including hardware and software components, data flow, interconnections, ports, protocols, and services.
Perform compliance reviews and analyses to verify adherence to federal requirements such as EO, OMB Memorandums, A‑130, NIST SP 800‑37, 800‑53, FIPS 199, and FIPS 200.
Perform analyses of security implementations for assigned systems, identify gaps, and recommend solutions.
Assist in the preparation and review of documentation, including System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), Authorization Recommendations (ARs), Cybersecurity Strategies (CSSs), and other A&A artifacts.
Research major obstacles related to evolving FISMA requirements and provide recommendations to overcome them.
Provide updates and input to the GRC SharePoint sites, including document uploads, page updates, access requests, and permissions on an ongoing basis.
Minimum Requirements
Bachelor’s degree and at least 2 years of related cybersecurity experience (or an equivalent 2‑year increase in experience to substitute for the degree).
Compliance with DoD 8140 at an intermediate or advanced level, demonstrated by CASP+CE, Security+, CISSP, or CISM certification.
Expert knowledge of NIST guidelines, FISMA, Cybersecurity principles and methodologies, Executive Orders (EOs), OMB Memorandums, Federal, DoD, and CISA Technical Reference Architectures, maturity models, RMF, CSF, and technical knowledge of IT systems.
Preferred Qualifications
USMC or Navy Validator certification.
OSCP / OSEP / CPTS certifications.
Experience with cloud‑based environments and technologies.
Strong analytical and problem‑solving abilities.
Effective communication skills and interpersonal, organizational, and analytical competence.
Clearance Requirements
Must have an active Secret clearance with the ability to obtain Top Secret/SCI.
#J-18808-Ljbffr