OBXtek Inc. is an established award-winning business providing information technology and professional management services to the federal government. OBXtek is a leader in its field and is committed to identifying, developing, and delivering innovative, mission-focused technical and logistical solutions to over 15 civilian and military partners in the Federal Government.
As a prime contractor for 93% of our current work, we possess a robust corporate infrastructure that provides management oversight and support for all our programs. OBXtek pairs lessons learned across disciplines with industry standard quality practices such as CMMI-Dev Level III, ITIL, 6Sigma, PMI, and ISO to create processes that leverage best practices and result in novel, successful solutions.
OBXtek is currently staffing for a Senior Project Engineer at Fort Belvoir, Virginia. This person will provide acquisition support, contract support, fielding management, quality assurance surveillance plan (QASP) operations, government furnished equipment (GFE) provisioning, project management, communications, and engineering services to the Product Lead Enterprise Computing (PL EC), and, specifically, to the Project Officer, Army Enterprise Service Desk (PO AESD).
Conducts program oversight, including on-going monitoring and periodic auditing of systems and systems operations. Develops, recommends and implements incident response procedures and technologies to identify, assess, and ensure the appropriate response to threats and vulnerabilities.
Lead, support, and/or facilitating security assessments of new or modified hardware, operating, systems, and software applications ensuring integration with DoD Cyber Security requirements.
Support Cyber Security analyst in conducting Vulnerability Management, Security Engineering, Certification and Accreditation, and Computer Network Defense.
Administer Risk Management Framework (RMF) mission assurance planning and implementation for preparation for accreditation for PM AESIP and Army ERP that will follow DoDI 8500.01 and DODI 8510.01.
Develop and review of certification plans and authorization documentation (i.e., system security plans, risk mitigation plans, contingency plans, and disaster recovery plans, etc.)
Develop security assessment report (SAR) for the PM AESIP and Army Enterprise Resource and Planning network enclaves. Responsible for the adequate assessment of all identified risk(s) and the generation of a mitigation plan for the PEO EIS Cyber Security Office to receive an authorization decision for all information systems. Evaluate and ensure security threats are mitigated, remediated or waived IAW DoD guidelines.
Review vulnerability scans/checks for cybersecurity compliance as needed and ensure periodic audits are conducted using the Security Content Automation Protocol (SCAP), Assured Compliance Assessment Solution (ACAS), DISA STIG’s, and other DoD approved vulnerability scanning assessment tools.
Administering and managing the Host Based Security System (HBSS) for the PM AESIP and Army ERP network enclaves.
Administering and managing the ACAS for the Army ERP network enclaves.
Incident Response Team: Responsible for conducting analysis of security incidents (i.e. Phishing, malware, account access compromises, and network intrusions). Perform investigations of unauthorized disclosure of Personal Identifiable Information. Responsible for reporting findings and provide status to senior leadership. Perform escalations to the Regional Computer Emergency Response Team (RCERT) when required.
COOP/Disaster Recovery (DR) Security Engineering Personnel: Serve as a member the COOP Disaster Recovery Team during COOP exercises supporting the PM AESIP and Army ERP security engineering mission essential functions (MEF)s at the alternate site.
Information Assurance Vulnerability Management (IAVM): Responsible for acknowledging and tracking IAVM notices and creating Plan of Actions and Milestones (POAMs) for review and approval by the Authorizing Official (AO).
Soft Certificate Trusted Authority (TA) for PM AESIP and AERP:
Responsible for obtaining all DoD PKI Individual Alternate Smart Card Logon Tokens (ASCL) and Soft Tokens for PM AESIP/AERP personnel for unclassified/classified systems. Responsible delegating and assigning Alternate Trusted Authorities (TA) with the authority and responsibility to obtain certificates for PM AESIP/AERP. Duty assignment appointed by PM AESIP/AERP Leadership and Army Register Authority (RA).
Assist with providing high-level briefings to PEO EIS Cyber Security Office and AO for the PM AESIP and Army ERP security posture for the enclaves and Information Systems (IS). Develop written reports, project plans, schedules, meeting minutes, briefings and other documentation for PEO EIS Cyber Security Office.
Manage the Information Assurance Training (IAT) Workforce Program for the program to ensure all PM AESIP/AERP government and contracting personnel are 8570 compliant.
Promotes awareness of security issues among management and ensuring sound security principles are followed.
ACTIVE DoD SECRET CLEARANCE required
Bachelor’s Degree in Cyber Security, Engineering, IT, or related technical field
At least 5 years of relevant experience required
DoD 8570.01-Manual IAM Level II baseline certification required
Familiarity with HBSS and ACAS
Experience with eMASS
Experience with ERP programs