Senior Information Systems Security Engineer/Cybersecurity SME Jobs in Tampa, FL at SOLUTE

Title: Senior Information Systems Security Engineer/Cybersecurity SME

Company: SOLUTE

Location: Tampa, FL

Sigma Defense Systems is a leading technology company serving the Department of Defense (DoD), providing tactical communications systems and services for digital modernization since 2006. Through our acquisitions of SOLUTE in January 2022 and Sub U Systems in May 2022, we have expanded our software and communications hardware solutions to better support JADC2, C5ISR, SATCOM, and DEVSECOPS for customers in the Army, Navy, Air Force, Marine Corps, and Space Force. Through a combination of hardware, software, and industry expertise, we provide a complete portfolio of solutions and services that accelerates information collection and sharing for faster decision making and better mission outcomes.

This position will provide cybersecurity support services and Risk Management Framework (RMF) subject matter expertise to the Medium-altitude, Long-endurance Tactical (MALET) Program in accordance with DoD policies and USSOCOM directives and regulations.

Supports the MALET program as the Information System Security Officer (ISSO) for MQ-1C/ER Mod capabilities, by ensuring they meet cybersecurity requirements in accordance will DoD Instruction 8510.01, Risk Management Framework (RMF) for DoD Information Technology (IT), including access control, training and awareness, secure systems design, media protection, cryptographic protection, information system monitoring, incident response, network boundary protection, operations security, endpoint security, anti-tamper/supply chain risk management, software assurance, and anti-counterfeit practices. Defines MQ-1C/ER Mod system-specific security control baselines by selecting and tailoring National Institute of Standards and Technology (NIST) Special Publication 800-53 security controls based on the Confidentiality-Integrity-Availability (C-I-A) impact levels of the information and information systems, and by applying any applicable overlays in accordance with Committee on National Security Systems Instruction (CNSSI) 1253. Develops RMF Security Authorization Packages for review and approval by the United States Army Special Operations Command (USASOC) Security Control Assessor (SCA) and Authorizing Official (AO) in order to obtain Interim Authorizations to Test (IATT) or Authorizations to operate (ATO) for the systems under their purview.

Processes, manages, and maintains all Assessment and Authorization (A&A) documentation during the entire information system life cycle using the Enterprise Mission Assurance Support Service (eMASS), to include the Control Implementation Plan, Security Assessment Report (SAR), Plan of Action and Milestones (POA&M), and any supporting evidence and analysis. Performs continuous monitoring and addresses changes in threats, vulnerabilities, and predisposing conditions in the operational environment. Ensures that the appropriate operational security posture is maintained for the MQ-1C/ER Mod systems, working in close collaboration with the information system owner (ISO), and the information system security engineers (ISSE). Serves as a principal advisor on all matters, technical and otherwise, involving the security of the MQ-1C/ER Mod information systems. Plays an active role in the monitoring of the systems and their environment of operation, to include developing and updating the security plan; managing and controlling changes to the system; and assessing the security impact of those changes. Ensures systems are operated, maintained, and disposed of IAW security policies and procedures as ou…