Senior Cybersecurity Engineer

Systems Planning and Analysis, Inc. (SPA) delivers high-impact, technical solutions to complex national security issues. With over 50 years of business expertise and consistent growth, we are known for continuous innovation for our government customers, in both the US and abroad. Our exceptionally talented team is highly collaborative in spirit and practice, producing Results that Matter. Come work with the best! We offer opportunity, unique challenges, and clear-sighted commitment to the mission. SPA: Objective. Responsive. Trusted.

The Space and Intelligence Division provides professional services to the US Space Force, Combatant Commands, Intelligence Community, and NASA. Our work includes enterprise architectural assessments, systems engineering and integration, test, planning and execution, cost estimating and analysis, acquisition support, and cybersecurity. We are trusted partners developing approaches and concepts to meet emerging high priority needs, assessing cutting-edge technologies, and supporting capabilities for our National Defense.

The Space Systems Group (SSG), part of SPA's Space and Intelligence Division, provides timely and objective assessments and recommendations integrating technical, operational, programmatic, policy, and business analysis. We focus on our key clients in the Space community including the US Space Force's Space Systems Command (USSF/SSC), one of the three designated Field Commands under USSF. We work tirelessly to provide integrated solutions based on information and communications throughout the chain of command. We provide clear and consistent analysis and recommendations which are aligned to strategic and leadership goals while balancing the ability to execute on time and on budget within the technical communities.

SPA has an immediate need for a Senior Cybersecurity Engineer.

Position Description

Ensure that Cybersecurity requirements are effectively integrated into IS and components through purposeful security architecting, design, development, and configuration;
• Employ best practices when implementing security controls within an IS;
• Provide assessment and technical inputs to any system changes for all associated system enclaves;
• Perform FISMA required risk assessment of policies, procedures, supplemental plans addressing network, facilities and system security, security awareness training, testing and evaluation of security controls, incident response plan, and continuity of operations plans;
• Evaluate requests for compliance and integration with all applicable cybersecurity policies, Notice to Airmen (NOTAMs), and Technical Change Orders (TCOs);
• Create/maintain a Government owned Cyber Schedule that captures all mission cybersecurity activities and actions; the schedule needs to be capable of showing a high-level view of all project/activity milestones, accomplishments, and discrete tasks including Authorization and Assessment activities for RMF packages, cyber assessments, and O&M Mods or depot sustainment cases that improve the systems cybersecurity postures;
• Provide IS and compliance documentation to include but not limited to the following:
  • Categorize ISs IAW Committee on National Security Systems Instruction (CNSSI) 1253
  • Initiate the security plan, register system with DoD Information Technology Investment Portfolio System (ITIPS) and Enterprise Mission Assurance Support System (eMASS) and select security controls for all computer enclaves IAW National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53
  • Identify common controls; develop monitoring strategy, and plan, review, and obtain approval IAW NIST SP 800-53 and CNSSI 1253
  • Implement and document control solutions consistent with DoD cybersecurity architectures IAW NIST SP 800-160 and NIST SP 800-18
  • Prepare the Plan of Action and Milestone (POA&M) and submit security authorization packages, to include all required artifacts to Authorizing Official (AO)