Overview **Your Future at M.C. Dean** We're seeking people driven to excellence and inspired to have a meaningful impact powering, automating, integrating, and securing the world’s most critical infrastructure and facilities. This translates into fulfilling opportunities for employees driven to excel in a meaningful career. As an employee at M.C. Dean, you will join forces with more than 5,800 professionals who engineer and deploy automated, secure and resilient power and technology systems; and deliver the management platforms essential for long-term system sustainability. Together, we transform the way complex, large-scale systems are designed, delivered, and sustained–enhancing client outcomes, improving lives, and changing the world for the better. We are seeking a **Cybersecurity Specialist** to join our **Security and Electronic Systems (SES)** business Unit. As part of **(SES)** Strategic Business Unit you will be part of a team that designs, engineers, integrates, operates and maintains electronic security services inclusive of intrusion detection, access control, biometric authentication, video surveillance, audio visual, it systems, perimeter defense and command and control systems for federal, local and commercial customers across high-growth markets. Responsibilities As part of a multidisciplinary team, you will be responsible for coordinating and implementing technical controls and configuration settings and will work in a team environment alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts responsible for supporting Information System Security Engineering efforts. **Responsibilities include but are not limited to:** + Working closely and supporting team members, vendors, and government customers + Implementing DoD Security Technical Implementation Guides (STIGs) on traditional Information Technology (IT) and Operational Technology (OT) systems to include operating systems, databases, and numerous applications + Completing STIG checklists and performing SCAP scans + Developing and maintaing POA&Ms both manually and in eMASS + Implementing STIGs using Group Policy Objects and PowerShell (for Windows hosts) or SSH (for Unix hosts) scripts + Assisting in the development and verification of documentation necessary to complete the DoD RMF assessment and authorization process + Conducting ICS/SCADA system inventories following DoD guidance + Conducting vulnerability scanning and document system vulnerabilities + Supporting ISO standardization and Quality inspections + Supporting system designs and interfacing with Systems Engineers to ensure that designs meet accreditation requirements + Using common tools for system assessments including ACAS / Nessus, Evaluate-STIG, eMASS, STIG Viewer, Vulnerator, eMASSter, SCAP Compliance Checker, etc. + Participating in continuous improvement of organizational cybersecurity posture Qualifications **Clearance/Citizen Type:** Applicants selected will be subject to a government security investigation and may meet eligibility requirements, including U.S. Citizenship, for access to classified information; **ACTIVE SECRET clearance REQUIRED, with the ability to obtain a TS/SCI** **Education:** + Bachelor's Degree in Information Technology, Risk Management, Cybersecurity with 5+ yrs progressive experience, or + High School Diploma with 10+ yrs progressive experience **Required Progressive Experience:** + Working with industry and government agencies on the design of platforms and integrated systems Working on government and/commercial projects implementing cybersecurity requirements in a variety of industrial control systems (e.g., building management, electronic security, fire alarm/mass notification, electrical distribution, power management, etc.) + Proficiency with ACAS and HBSS and mitigation strategies + Developing policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks, and data + Assessment, mitigation, and closure of network vulnerabilities and vulnerability management eMASS + Establishing, managing, and tracking of Plan of Action & Milestones (POA&M) Applying STIGs to servers, databases, applications, and other hardware Security Readiness Review (SRR) Tools (scripts and ACAS) + Ability to identify, maintain, and troubleshoot control network components + Excellent understanding of the DoD RMF lifecycle and NIST 800-53 controls implementation + Awareness of NIST Special Publication 800-82, Guide to Industrial Control Systems (ICS) Security and UFC 4-010-06 Unified Facilities Criteria (UFC) Cybersecurity of Facility + Working knowledge of operational control systems and implementing a variety of security assessment tools + Working knowledge of other operational control systems + Familiarity with DoDIN CCRI/CCORI and CYBERCOM TASKORDS + Familiarity with various industry products **One of the Required Certifications:** + CASP CE CISSP CISSP – ISSAP CISSP - ISSEP CSSLP CISA CISM GCED GCIH **Also:** + Strong Oral, Written and Presentation Skills with the ability and experience communicating directly with Customers + Demonstrated background working with multidisciplinary teams + Demonstrated time management and organization skills to meet deadlines and quality objectives + Strong MS Excel, Word, PowerPoint, AUTOCAD, Cameo and Visio Skills is a plus. **What we offer:** + A collaborative team inspired by the way engineering and innovation enhance customer outcomes, improve lives, and change the world for the better. We are driven by our core values of agility, expertise, and trust. + An opportunity to lead and build a business with the support of an industry-leading firm that has been in business for 75 years. + Investment in your skills and expertise through a combination of professional and technical training programs, including leadership training and tuition reimbursement. + Open and transparent communication with senior leadership as well as local office management. **We offer an excellent benefits package including:** + A competitive salary + Medical, dental, vision, life, and disability insurance + Paid time off + Tuition reimbursement + 401k Retirement Plan + Military Reserve pay offset + Paid maternity leave **Abilities:** + Exposure to computer screens for an extended period of time. + Sitting for extended periods of time. + Reach by extending hands or arms in any direction. + Have finger dexterity in order to manipulate objects with fingers rather than whole hands or arms, for example, using a keyboard. + Listen to and understand information and ideas presented through spoken words and sentences. + Communicate information and ideas in speaking so others will understand. + Read and understand information and ideas presented in writing. + Apply general rules to specific problems to produce answers that make sense. + Identify and understand the speech of another person.