CAE provides simulation and modeling technologies and integrated training solutions for the civil aviation industry. The Cybersecurity Specialist implements the Risk Management Framework for assessment and authorization of cloud-based applications and simulator training systems, ensuring compliance with NIST and DoD cybersecurity instructions.
Maintain a clear understanding of NIST and DoD Cybersecurity and Information Assurance instructions
Assess and implement operational, management and technical security controls and make recommendations and proposals for correcting deficiencies; develop compensating controls for information security deficiencies
Assist with developing or updating of Information Security related plans, procedures, work methods and documentation
Review current programs and define the steps needed for meeting the applicable cybersecurity and information assurance instructions. This includes detailed planning of all aspects of IA Compliance
Conduct information security vulnerability and compliance scanning using the DoD’s Assured Compliance Assessment Solution (ACAS) (Tenable Security Center and Nessus Software)
Produce information security vulnerability scanning reports and develop Plans of Action and Milestones (POA&Ms) to resolve information security vulnerabilities
Support, monitor, test and troubleshoot hardware and software cybersecurity issues and patches
Apply computer changes to comply with DoD Security Technical Implementation Guides (STIGs)
Application of DoD Information Assurance Vulnerability Management Program (IAVM)
Work closely with information technology staff to define required tasks to be accomplished to meet IA instructions
Work closely with customers to define program IA requirements.
Writing Information Assurance documents to define plans and scope of IA requirements.
Write Proposal sections to explain how CAE will meet IA instructions.
Operating system level setup of computers to implement controls and apply patches to eliminate vulnerabilities.
Perform other administrative functions/duties as assigned
Qualification
Required
B.S. degree in Computer Science, Computer Engineering, Information Technology, Electrical Engineering or other technical equivalent
two years of related experience, or an equivalent combination of education and related experience. USAF experience highly desired.
DoD 8570.01-M Information Assurance Technical level II (IAT II) Certification
Familiarity with DFARS 252.204-7012 Safeguarding Covered Defense Information requirements and NIST SP 800-171 R1 Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations
Familiarity with DoD's Cybersecurity RMF Assessment and Authorization processes
Familiarity with NIST SP 800-37 Guide for Applying the Risk Management Framework and NIST SP 800-53 R4 Security and Privacy Controls for Federal Information Systems and Organizations
Prior experience in operating system setup and updates to apply patches to mitigate information security vulnerabilities.
Related skill areas should include technical writing and presentation skills.
Excellent written and verbal communication skills are required.
Analytical and mathematical modeling ability.
Ability to read, analyze, and interpret professional journals, technical procedures, or governmental regulations.
Ability to write reports, business correspondence, and procedure manuals.
Ability to apply principles of logical or scientific thinking to a wide range of intellectual and practical problems.
Should be familiar with and able to support Engineering or Operations staff on any type and sub-component of training devices.
The types of devices that will be encountered include full flight motion devices, maintenance training devices, and fixed base training devices.
Ability to travel domestically and internationally
At least one certification must be from this list: CCNA Security, CySA, GICSP, GSEC, Security+ CE and SSCP
DUE TO U.S. GOVERNMENT CONTRACT REQUIREMENTS, ONLY U.S. CITIZENS ARE ELIGIBLE FOR THIS ROLE.
Must comply with all company security and data protection / usage policies and procedures.
Incumbent must possess an active DoD Personal Secret Security Clearance
Preferred
Benefits
Comprehensive and competitive benefits package and flexibility that promotes work-life balance
A work environment where all employees are valued, respected and safe
Freedom to succeed by enabling team members to deliver, take initiatives and make decisions
Recognition, professional development, advancement and having fun!
CAE provides simulation and modeling technologies and integrated training solutions for the civil aviation industry.
Glassdoor
3.8
Founded in 1947
Montréal, Quebec, CAN
10001+ employees
http://www.cae.com
CAE provides simulation and modeling technologies and integrated training solutions for the civil aviation industry.
