CGI Federal has an exciting opportunity for a FSO/Industrial Security Cyber Engineer within our Intel sector advancing the national security mission through cutting edge technology. The role combines responsibilities of a Facility Security Officer with a focus on cybersecurity engineering, requiring collaboration to deliver state-of-the-art capabilities.
Industrial security management: This individual is responsible for maintaining the organization's industrial security program and Facility Clearance (FCL) in compliance with regulations like the National Industrial Security Program Operating Manual (NISPOM), now implemented under 32 CFR Part 117.
Cybersecurity engineering and compliance: They are responsible for implementing cybersecurity measures and ensuring compliance with frameworks such as the Risk Management Framework (RMF), Cybersecurity Maturity Model Certification (CMMC), and other security directives.
Security program oversight: The engineer will develop, implement, and manage security plans and procedures for both physical and digital assets, including Standard Operating Procedures (SOPs) and insider threat programs.
Government liaison: They act as the primary point of contact with government agencies like the Defense Counterintelligence and Security Agency (DCSA) and manage external security audits.
Security clearance management: This involves initiating security clearance applications for employees, tracking their status, and conducting initial and exit briefings.
System accreditation and monitoring: They prepare system security authorization documents (like System Security Plans and Plans of Action and Milestones) and perform ongoing security monitoring of classified systems.
Incident response: The engineer investigates and reports security incidents and data spills, recommending corrective actions and contributing to incident response and disaster recovery planning.
Training and awareness: They develop and conduct security awareness and education programs for cleared personnel,
Technical security controls: Implement, manage, and monitor security measures such as firewalls, intrusion detection/prevention systems, and access controls.
Vulnerability management: Conduct vulnerability scanning and penetration testing on networks and systems, and report on compliance using tools like Nessus, SCAP, and Splunk.
Secure system development: Apply security techniques and best practices to system and software development to embed security from the start (DevSecOps).
Digital forensics: Gather and analyze digital evidence for investigations following security incidents.
Qualification
Required
Bachelors degree and/or 0 to 2 years of experience
TS/SCI required with the ability to obtain a TS/SCI with Poly highly desired
Preferred
Benefits
Competitive compensation
Comprehensive insurance options
Matching contributions through the 401(k) plan and the share purchase plan
Paid time off for vacation, holidays, and sick time
Paid parental leave
Learning opportunities and tuition assistance
Wellness and Well-being programs
CGI is an IT and business consulting services firm that offers consulting, cyber security, cloud, and IT services.
Glassdoor
3.8
Founded in 1976
Montréal, Quebec, CAN
10001+ employees
https://www.cgi.com
CGI is an IT and business consulting services firm that offers consulting, cyber security, cloud, and IT services.
