More jobs:
Cybersecurity Engineering Support Specialist
Job in
Manassas, Prince William County, Virginia, 20108, USA
Listed on 2026-06-26
Listing for:
General Dynamics
Full Time
position Listed on 2026-06-26
Job specializations:
-
IT/Tech
Cybersecurity
Job Description & How to Apply Below
Cybersecurity Engineering Support Specialist
:
US-VA-Manassas
Required Clearance:
Secret
Posted Date: 6/21/2026
Category:
Engineering-Other
Employment Type:
Full Time
Hiring Company:
General Dynamics Mission Systems, Inc.
Basic Qualifications
Bachelor's or Technology degree in Engineering or a related specialized area/field, or equivalent combination of education and relevant work experience, plus 5 years of relevant experience; or Master's degree plus 3 years of experience.
Responsibilities for this Position
ROLE AND POSITION OBJECTIVES
As a Cybersecurity Engineering Support Specialist, you will own the end-to-end RMF lifecycle for Navy information systems from categorization through authorization and continuous monitoring. You will be the primary technical authority for building, maintaining, and defending ATO packages across multiple systems simultaneously. The ideal candidate combines deep RMF expertise with systems engineering fundamentals, translates security requirements into actionable guidance, and thrives managing competing priorities in an Agile environment.
PRIMARY RESPONSIBILITIES
* Shepherd multiple Navy information systems through the full ATO lifecycle (Categorize, Select, Implement, Assess, Authorize, Monitor)
* Build and maintain complete authorization packages: SSPs, SAPs, SARs, RARs, POA&Ms, architectural diagrams, HW/SW inventories, and continuous monitoring strategies
* Develop, review, and maintain authorization boundary diagrams that clearly delineate system scope, data flows, interconnections, and external interfaces
* Assess and validate NIST SP 800-53 security controls; write control satisfaction narratives with rigor to withstand SCA/AO scrutiny
* Implement and validate STIGs across diverse system components; track findings through resolution or risk acceptance
* Conduct vulnerability scans (ACAS/Nessus, SCAP), interpret results, and translate findings into remediation plans and residual risk determinations
* Manage POA&M items end-to-end creation, milestone tracking, risk characterization, and closure with evidence
* Coordinate with system owners, ISSMs/ISSOs, SCAs, and AOs to adjudicate risk and achieve authorization decisions on schedule
* Support continuous monitoring including periodic control assessments, ongoing authorization evidence collection, and change-impact analysis
* Integrate security assessment activities into Dev Sec Ops CI/CD pipelines where applicable
KNOWLEDGE,
SKILLS AND ABILITIES
* RMF Mastery:
Hands-on experience executing the full RMF lifecycle (NIST SP 800-37) from categorization (FIPS 199/CNSSI 1253) through ATO and continuous monitoring not just familiarity, but package ownership
* Control Assessment:
Deep knowledge of NIST SP 800-53 Rev 4/Rev 5; ability to assess implementations, write defensible narratives, and identify gaps
* STIG Implementation:
Practical experience applying and verifying STIGs across OSes, network devices, databases, and applications using STIG Viewer and SCAP tools
* Vulnerability Management:
Proficiency with ACAS/Nessus and SCAP Compliance Checker; ability to interpret results and drive remediation
* Documentation:
Proven ability to produce audit-ready RMF artifacts (SSPs, SARs, SAPs, RARs, POA&Ms) that satisfy AO requirements
* Stakeholder Communication:
Can translate technical findings into risk-informed language for system owners, PMs, and AOs
* Multi-System Management:
Organizational skills to track controls, findings, and milestones across concurrent authorization efforts
* Systems Engineering Foundation:
Understanding of system architectures, data flows, boundaries, and how security requirements map to implementations
WHAT SETS YOU APART
* Experience with Navy RMF implementation, including Navy-specific overlays, NAVSEA processes, and authorization workflows
* Proficiency with eMASS and VRAM
* Experience with DoD cloud authorization (IL4IL6), FedRAMP reciprocity, or container security (Kubernetes/Open Shift)
* Relevant certifications:
Security+, CISSP, CAP, CISM, and/or AWS security certs (IAM/IAT Level II/III per DoD 8140)
* Experience with Dev Sec Ops tool chains and security gates in CI/CD pipelines
* Experience supporting SCA evaluations or serving as an ISSE/ISSM
* Track record of achieving ATO decisions on schedule across multiple systems
* Works independently under limited direction across concurrent efforts
* Identifies opportunities to apply AI for continuous improvement and innovation
* Active Secret clearance
Salary Note
This estimate represents the typical salary range for this position based on experience and other factors (geographic location, etc.). Actual pay may vary. This job posting will remain open until the position is filled.
Combined Salary Range
USD $ - USD $ /Yr.
Company Overview
General Dynamics Mission Systems (GDMS) engineers a diverse portfolio of high technology solutions, products and services that enable customers to successfully execute missions across all domains of operation. With a global team of…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×