Think Beyond The Label Jobs

Knowledge Management, Inc. (KMI) has the leadership and experience to deliver innovative technology, logistics and management solutions to meet real mission requirements. KMI is a Minority Business Enterprise (MBE) and Small Disadvantage Business (SDB) that specializes in Logistics, Warehouse Services, Distance Learning/Training, Enterprise Solutions, Financial Management Support, Program Management, Intelligence Analysis and Threat Assessment, and Data Analytics/Operations Research. Since 1998, our solutions and services have helped our clients improve performance, drive cost and operational effectives, and map technology needs for tomorrow's requirements.

Job Title: Sr. Cybersecurity Engineer

Min Exp:10 years of experience as a cybersecurity engineer with a specialization in designing and building implementations of required security controls; and implementing continuous monitoring and auditing of solutions for compliance with security controls.

Min Ed: BS degree

Location: Onsite at either Reston, VA - Washington, DC - College Park, MD

Salary: Please provide your salary requirement

Certification: CISSP or equivalent certification to support DoD 8140 requirements

Clearance: DOD TS/SCI CI Poly clearance

As

Sr. Cybersecurity Engineer, you'll play a critical role in safeguarding digital assets by designing, implementing, and maintaining robust cybersecurity infrastructure. You will work collaboratively with cross-functional teams to identify vulnerabilities, develop solutions, and ensure compliance with security protocols and industry standards. Staying informed about emerging trends and threats in the cybersecurity landscape, you will proactively enhance defenses through innovative tools and methodologies. Additionally, you will conduct risk assessments, implement security controls, and support incident response efforts to minimize risks and maintain the integrity of our systems and data.

If you think you can see yourself delivering our mission and pursuing our goals with us, then check out the job description below!

What you'll do:

• Design, implement, and manage security solutions, including firewalls, intrusion detection/prevention systems, endpoint protection, and encryption mechanisms to ensure the organization's networks and systems remain secure.
• Conduct regular security assessments to identify vulnerabilities and weaknesses in systems, networks, and applications.
• Develop and implement incident response plans to effectively address security breaches, incidents, and breaches.
• Collaborate with cross-functional teams to establish and enforce security policies, standards, and procedures.
• Monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents.
• Analyze and investigate anomalies and security breaches, taking appropriate actions to mitigate risks.
• Work closely with cross-functional teams, including IT, software development, and compliance, to integrate security into all phases of the development lifecycle and ensure a comprehensive approach to cybersecurity.
• Maintain thorough and accurate documentation of security processes, procedures, and configurations. Prepare detailed reports on security findings, incidents, and actions taken.

What you'll need to succeed:

• Active TS/SCI clearance with CI poly (REQUIRED)
• A minimum of 10 years of experience as a cybersecurity engineer with a specialization in designing and building implementations of required security controls; and implementing continuous monitoring and auditing of solutions for compliance with security controls.
• A working knowledge with creating SMG's (Security Management Guides)
• A working knowledge with AWS services, their usage, APIs, CLI/SDKs and patterns
• Expert in AWS IAM policy creation, including condition keys and "not" usage
• Expert-level skills in specifying and implementing log collection into tools uch as Splunk, and performing querying and analysis of aggregated logs to identify security-relevant anomalies or risks
• Strong experience in implementing security controls from government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, ICD 503, FISMA, FedRAMP).
• Demonstrated and repeat experience implementing controls for cloud, container, and DevSecOps services and solutions from IL5 to IL6+ on NIPR, SIPR, and JWICS.
• Strong understanding of network protocols, operating systems, and infrastructure components.
• Expert proficiency in incident response, security incident handling, and forensic analysis techniques.
• Expertise with security tools such as Fortify, Acunetix, and Prisma Cloud
• Effective communication skills, with the ability to convey complex technical concepts to both technical and non-technical stakeholders.
• CISSP or equivalent certification to support DoD 8140 requirements

[]{style="font-weight: 700; text-decoration: underline; font-fami

"}