Sr. RMF Security Engineer

Leidos

Actively hiring Posted this week
San Diego, CA Posted 5 days ago $131,300$237,350 / year
View original post Log in to save

At a glance

AI generated

TL;DR

Leidos seeks a Senior RMF Security Engineer to join its National Security Sector's Cyber & Analytics Business Area in San Diego. This role involves guiding projects through the Risk Management Framework lifecycle at a Navy base, ensuring compliance with federal cybersecurity standards for DoD systems. The engineer will categorize information systems based on risk, implement security controls per NIST guidelines, and conduct continuous monitoring to address vulnerabilities and compliance gaps. Key responsibilities include performing risk assessments, analyzing test results, recommending mitigation strategies, and preparing critical documentation such as System Security Plans and Security Assessment Reports. Essential skills encompass expertise in RMF compliance, eMASS, SCAP tools like Nessus and OpenSCAP, SIEM tools including Splunk, and STIG compliance. Preferred qualifications include automation scripting with Python or Bash, knowledge of AI/ML applications in RMF, understanding of Zero Trust Architecture, and familiarity with CMMC 2.0 standards.

Skills

NIST_SP_800_37 NIST_SP_800_53 FedRAMP DoD_Instruction_8510_01 eMASS SCAP SIEM STIG Python Bash PowerShell CI/CD CMMC_2_0 COMSEC CISSP

What you'll do

  • Conduct risk assessments and vulnerability scans to identify security gaps.
  • Guide the RMF lifecycle for information systems, ensuring compliance with NIST SP 800-53 and DoD requirements.
  • Prepare System Security Plans (SSP), Security Assessment Reports (SAR), and Plan of Action & Milestones (POA&M).
  • Implement and assess security controls to mitigate identified risks in information systems.
  • Use SCAP tools like Nessus, Tenable.sc, and OpenSCAP for compliance testing and vulnerability management.

What we're looking for

  • Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science or related field with extensive experience.
  • Deep expertise in RMF compliance and NIST standards (SP 800-37, SP 800-53, etc.).
  • Active Secret DoD security clearance and DoD 8570 approved certification.
  • Experience preparing SSPs, SARs, POA&Ms, conducting risk assessments, and vulnerability scans.
  • Proficiency with eMASS, SCAP tools (Nessus, Tenable.sc), and SIEM tools (Splunk, ArcSight).
  • Strong understanding of STIG compliance and security assessment methodologies.

Employer

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations.

Leidos currently has 214 open roles on FindRole.

Listed pay typically runs $107,900–$195,050 across 204 roles with salary data.

Most-posted roles

View all roles at Leidos