Cornerstone Defense | Technically Innovative Solutions

Location: Washington, District Of Columbia
Type: Contract
Job #2000

Title: Full Stack Developer

Location: Crystal City, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Cornerstone Defense, in partnership with our military, intelligence, and civil government customers, supports U.S. operations worldwide through the use of many different types of intelligence, satellite, and cyber technologies. Cornerstone’s Intelligence Sector provides solutions to the United States Government for information collection, operations, exploitation and dissemination, and research activities. Our Team specializes in software development, cloud architecture, systems and network engineering, systems integration, agile management, as well as targeting operations and intelligence analysis. Our support to our mission customers includes cyber network operations, exploitation and defense, signals intelligence, human intelligence, and critical missions and networks.

Technology Stack:

ExtJS – must have front-end development experience. ExtJS is strongly preferred. Experience with Angular and/or React is a plus.
Java/J2EE – must have experience developing Java web applications
JSP, Beans, JTSL, Spring Framework – must have experience maintaining and modernizing/refactoring Java applications
SOAP & REST – must have experience with developing and consuming both SOAP and REST APIs.
Oracle – must have experience with relational database systems and stored procedures. Oracle is preferred. Additional RDMS system exposure, especially to Postgres, would be a plus.

Technology “Buzz words”:

Node – incrementally migrating Java applications to node-based microservices
Eclipse
Git
Maven/Artifactory
Tomcat – J2EE apps served using Tomcat
Solr/Zookeeper – NoSQL document/search preferred, Elasticsearch is a plus.
Linux – SSH/Bash scripting experience is helpful
AWS

Day to day:

This role requires solid communications both customer facing and as part of a team
This role requires the ability to document repeatable processes and following existing team processes
This application is a critical mission system, supporting thousands of online users. The role requires experience supporting critical apps.
Must be willing to be on site per customer requirements. Currently this is 2 days a week (40%) and might increase going forward.
Although not frequent, this role might have an operational component requiring after hours support as the systems are part of a critical mission.

Role Preferences:

Agile, SharePoint, Jira and Confluence would be helpful.

Location: Washington, District Of Columbia
Type: Contract
Job #1999

Title: Full Stack Developer

Location: Crystal City, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Technology Stack:

ExtJS – must have front-end development experience. ExtJS is strongly preferred. Experience with Angular and/or React is a plus.
Java/J2EE – must have experience developing Java web applications
JSP, Beans, JTSL, Spring Framework – must have experience maintaining and modernizing/refactoring Java applications
SOAP & REST – must have experience with developing and consuming both SOAP and REST APIs.
Oracle – must have experience with relational database systems and stored procedures. Oracle is preferred. Additional RDMS system exposure, especially to Postgres, would be a plus.

Technology “Buzz words”:

Node – incrementally migrating Java applications to node-based microservices
Eclipse
Git
Maven/Artifactory
Tomcat – J2EE apps served using Tomcat
Solr/Zookeeper – NoSQL document/search preferred, Elasticsearch is a plus.
Linux – SSH/Bash scripting experience is helpful
AWS

Day to day:

This role requires solid communications both customer facing and as part of a team
This role requires the ability to document repeatable processes and following existing team processes
This application is a critical mission system, supporting thousands of online users. The role requires experience supporting critical apps.
Must be willing to be on site per customer requirements. Currently this is 2 days a week (40%) and might increase going forward.
Although not frequent, this role might have an operational component requiring after hours support as the systems are part of a critical mission.

Role Preferences:

Agile, SharePoint, Jira and Confluence would be helpful.

Location: Washington, District Of Columbia
Type: Contract
Job #1998

Title: Cloud Developer

Location: Crystal City, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Technology Stack:

AWS Services – services including VPC/networking, EC2, S3, RDS and Lambda
AWS Automation – AWS CloudFormation would be preferred, Ansible is nice to have, other systems such as Terraform are welcome. Must be able to speak to the code they have written to perform automations.
Linux Administration — CentOS/RHEL preferred, must be comfortable on the command line.

Technology “Buzz Words”:

CI/CD – Experience with Gitlab is preferred
Source Control – experience with infrastructure as code, checked into source control (Git is preferred)
Artifactory
Cross domain solutions
Splunk
ELK or Elasticsearch
Containerization (docker/Kubernetes)

Day to Day:

This role requires solid communications both customer facing and as part of a team
This role requires the ability to document repeatable processes and following existing team processes
This application is a critical mission system, supporting thousands of online users. The role requires experience supporting critical apps.
Must be willing to be on site per customer requirements. Currently this is 2 days a week (40%) and might increase going forward.
Although not frequent, this role might have an operational component requiring after hours support as the systems are part of a critical mission.

Role Preferences:

Agile, SharePoint, Jira and Confluence would be helpful.

Location: McLean, Virginia
Type: Contract
Job #1975

Title: Computer Systems Security Engineer

Location: McLean, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

The Systems Security Engineer is responsible for multiple infrastructure and rapid prototype projects, assisting the Sponsor in generating and maintaining security documentation for system hardware and software to include system security plans (SSPs), equipment lists, software/hardware lists, practices, procedures, etc. The ISSE duties shall include, but not limited to the following:
Serve as Information security lead for multiple infrastructure and rapid prototyping projects.

Develop and review security concept of operations, systems security plans, security control assessment, contingency plans, configuration management plans, incident response plans, plans of action and milestones, risk management plans, vulnerability scanning and/or vulnerability management plans.

Maintain security documentation for system hardware and software to include but not limited to the Systems Security Plan, equipment lists, software lists, system concepts of operations, system security design, implementation practices and procedures.

Evaluates potential security risks and takes appropriate corrective, mitigation, and recovery actions.
Oversees the applicable patches are implemented, including information assurance (IA) vulnerability alerts (IAVA) and other related vulnerability patching that is applicable.
Working with engineers and systems administrators to resolve system issues, develop mitigation and remediation strategies.
Responsible for scanning systems and reporting findings.
Review security test results to identify weaknesses, technical flaws, and vulnerabilities.
Implements security engineering principles to review security requirements, verify implementation, and provide mitigation recommendations to facilitate secure systems for A&A process.
Recommend technical process improvements for the A&A process.
Implement risk management framework (RMF) processes and document the system capabilities.
Assess, verify, and support the implementation of security controls (physical and logical).
Manage POA&Ms for the system and ensure that milestones are met.
Enforcing INFOSEC policies and procedures

Certifications:

Certified Information Systems Security Professional (CISSP)
Information Systems Security Engineering Professional (ISSEP)
DOD Information Technology Security Certification and Accreditation Process (DITSCAP)
DOD Information Assurance Certification and Accreditation Process (DIACAP)
Familiarity with Agile framework

Required Skills:

Bachelor's Degree in computer science, computer engineering, information assurance, and ten (10) years of relevant experience. Eight (8) years of experience, for a total of eighteen (18) can be substituted in lieu of a degree.
Seven (7) years relevant experience in information assurance or information security engineering.
Five (5) year’s experience working on Sponsor's Agency assessment and authorization (A&A) security packages

Optional Skills:

Ability to perform in a fast-paced environment with frequent changes.
Understand risk management framework process.
Experience with using NESSUS on a large IT network similar to the Sponsor's network.

Location: Herndon, Virginia
Type: Contract
Job #1939

Title: Systems Administrator

Location: Tysons Corner, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Mobile Services Close Support Position

Close Support position that supports Mobile Services Team with primary focus on cell phones, some laptops (build, restore, delivery, etc). Responsible for updating of databases/records regarding ownership transfers of devices.

Location: McLean/Tysons

Hours: Monday-Friday M-F – 6:00AM – 2:30PM (option to flex)

Required Skills/Experience: Tier 2 hardware, software and network troubleshooting; excellent customer service skills

Required Certifications: N/A

Manages the functionality and efficiency of mobile devices. Position supports Mobile Services Team with primary focus on cell phones, some laptops (build, restore, delivery, etc). Responsible for updating of databases/records regarding ownership transfers of devices. Responsibilities include:

1. Mobile device setup prep by creating ID accounts and installing additional applications

2. Respond to customer support requests via in person, phone, email, instant messaging

3. Assist customers with first time logon to new mobile devices

4. Assist customers with in-person mobile phone password updates and mobile phone password resets

5. Assist customers with hardware and software issues related to mobile phones

6. Perform laptop builds

7. Perform laptop O/S updates

8. Perform laptop software installs

9. Troubleshoot laptop problems

10. Perform Active Directory activities

10. Provides advice and training to end-users.

11. Provides guidance and work leadership to less-experienced staff members.

12. Maintains current knowledge of relevant technologies as assigned.

13. Participates in special projects as required.

Education: Related technical discipline, or the equivalent combination of education, technical certifications or training, or work experience.

Qualifications

3-6 years of directly related experience in close support

Location: Washington, District Of Columbia
Type: Contract
Job #1933

Title: Cloud/Ops Platform Engineer

Location: Crystal City, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Technology Stack:

AWS Services – services including VPC/networking, EC2, S3, RDS and Lambda
AWS Automation – AWS CloudFormation would be preferred, Ansible is nice to have, other systems such as Terraform are welcome. Must be able to speak to the code they have written to perform automations.
Linux Administration — CentOS/RHEL preferred, must be comfortable on the command line.

Technology “Buzz Words”:

CI/CD – Experience with Gitlab is preferred
Source Control – experience with infrastructure as code, checked into source control (Git is preferred)
Artifactory
Cross domain solutions
Splunk
ELK or Elasticsearch
Containerization (docker/Kubernetes)

Day to Day:

This role requires solid communications both customer facing and as part of a team
This role requires the ability to document repeatable processes and following existing team processes
This application is a critical mission system, supporting thousands of online users. The role requires experience supporting critical apps.
Must be willing to be on site per customer requirements. Currently this is 2 days a week (40%) and might increase going forward.
Although not frequent, this role might have an operational component requiring after hours support as the systems are part of a critical mission.

Role Preferences:

Agile, SharePoint, Jira and Confluence would be helpful.

Type: Contract
Job #1917

Title: Network Engineer

Location: Annapolis Junction, MD

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Red Hat and Windows Certificate Authority
JunOS (+SRX) IPsec VPN Gateway
Hypori Transport Layer Security (TLS) software application
NetApp storage/filing application
VMware Cloud Computing enhanced tools
Secure cellular and fixed network software applications
VMware and Networking tools
Windows Server/Active Directory, WSUS/SCCM, VMware ESXi and vCenter, NAS/SAN, Cisco switches, ASAs, WLAN and VPNs; and Aruba WLAN and VPNs

Education Requirements:

A Master’s degree in Computer Science, Information Assurance, Information Security Systems Engineering, or a related discipline from an accredited college or university and ten (10) years of relevant professional experience providing Network Engineering support and training commensurate with network engineering curriculums or a Bachelor’s degree from an accredited college or university in System Engineering, Computer Science, Information Systems, Engineering Science, Engineering Management, or related discipline and Twelve (12) years of relevant professional experience providing Network Engineering support.
Fifteen (15) years of relevant experience providing Network Engineering support may be substituted for a Bachelor’s degree or Twenty (20) years for a Master’s degree.

Certification:

Certification: An Information Assurance Technical (IAT) level III baseline certification as defined by DoD 8570.01-M is required.
Cisco certification is required.

Type: Contract
Job #1916

Title: System Engineer

Location: Annapolis Junction, MD

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

CS architecture, engineering, design, research or implementation
COTS/GOTS CS tool implementation; and emerging technologies in areas such as cloud CS, security orchestration/automation, and software defined networking.
Experience identifying and coordinating execution of pilot projects implementing cybersecurity capabilities within DoD or the IC.
Conducting CS product and capability test and evaluation to assess performance and compliance with requirements; and COTS/GOTS CS tool/capability implementation.
Experience with DoD, IC, and other federal government (e.g., NIST) policy, directives, and instructions relevant to CS strategic planning and direction
Experience reviewing/editing/developing CS Standards within international standards organizations (e.g., IETF, TCG, OASIS).
CS architecture, engineering, design, research or implementation;
Experience with DoD, IC, and other federal government (e.g., NIST) policy, directives, and instructions relevant to CS strategic planning and direction;
CS risk management and mitigation strategies; and Supply Chain Risk Management
Red Hat and Windows Certificate Authority;
JunOS (+SRX) Ipsec VPN Gateway;
Hypori Transport Layer Security (TLS) software application;
NetApp storage/filing application;
VMware Cloud Computing enhanced tools;
VMware Cloud Computing enhanced tools
Secure cellular and fixed network software applications
DoD Architecture Framework (DoDAF) version 2.02 modeling and DoDAF system engineering analysis or development;
Cryptographic development and analysis;
IA and cybersecurity architectures, concepts, principles, use cases, and standards; and
DoD, IC, and other federal government (e.g., NIST) policy, directives, and instructions relevant to IA and cybersecurity strategic planning and direction.

Education Requirements:

Bachelor’s degree in System Engineering, Computer Science, Information Systems, Engineering Science, Engineering Management, or related discipline from an accredited college or university is required. Five (5) years of additional SE experience may be substituted for a bachelor’s degree.
Fourteen (14) years experience as a SE in programs and contracts of similar scope, type and complexity is required

Type: Contract
Job #1914

Title: Technical Writer

Location: Annapolis Junction, MD

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Six (6) years experience as a TW in programs and contracts of similar scope, type, and complexity is required.

Education Requirements:

Bachelor’s degree in a technical discipline from an accredited college or university is required.
Four (4) years of additional TW experience may be substituted for a bachelor’s degree.

Location: Chantilly, Virginia
Type: Contract
Job #1903

Title: Cloud Computing Consultant Senior Technical Specialist – Expert

Location: Chantilly, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Responsibilities:

Provide technical expertise on cloud cluster computing techniques and technologies and related cloud computing architectures. Assist customers with data integration and migration efforts, including mapping schemas, performing RDF translations, and defining domain specific ontologies, where applicable. Assist with the development of large data technologies and applications for clients. Research, evaluate, and assist with deployment of advanced cloud computing systems and large data analytics for clients in research and production areas. Work with massive data sets and team members from a variety of specialties to solve the customer’s challenges. Work as a key contributor on a collaborative, fast-growing, and highly skilled software development team. Apply expert knowledge in computer science, particularly in cloud computing environments.

d. Required Qualifications

• TS/SCI w/ poly

• Requires 12 to 15 years with BS/BA or 10 to 13 years with MS/MA or 10+ years with PhD

• Candidate shall demonstrate strong experience with customer's Assessment and Authorization (A&A) process (e.g. RMF, NIST800-53, ICD503)

• Comprehensive experience designing and operating solutions using the AWS Cloud

• Experience in troubleshooting services within AWS (EC2, RDS, S3, etc.)

• Experience with implementing ServiceNow

• Experience with system security plans and supporting documentation required for system accreditation

• Experience with security controls, including levels of access, and how to grant access

e. Desired Qualifications:

• Familiarity with Xacta

• Experience with log analysis to assist in root cause analysis

• Experience configuring environments to execute test cases

• Familiarity with scripting (primarily JavaScript). Have the ability to read and interpret scripts (not necessarily ability to write scripts)

Location: Chantilly, Virginia
Type: Contract
Job #1902

Title: ISSM – Expert

Location: Chantilly, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Responsibilities:

Act as a technical management resource for information system security matters. Provides technical and programmatic Cyber Security and Information System Security Management Services to internal and external customers in support of network and information security systems. Ensures the development and implementation of information security policy, requirements, and procedures within an organization’s business processes. Reviews documentation from information obtained from customer using accepted guidelines such as RMF (Risk Management Framework).

Provides assessment and authorization (A&A) management support by guiding the development of all documentation necessary to complete the A&A process to include system security plans, contingency plans, and other associated documentation. Conducts complex vulnerability assessments to include; development of risk mitigation strategies with the customer; adjudicating based on assessing the vulnerabilities, threats, and risk associated with assessment. Reviews system configurations and scan tool results in order to determine system compliance and report results.

Analyzes policies and procedures against Federal laws and customer regulations and provides recommendations for closing gaps. Develops strategies to comply with privacy, risk management, and e-authentication requirements. Provides cyber security and information system security support for the development and implementation of security architectures to meet new and evolving security requirements. Evaluates, develops and enhances security requirements, policy and tools. Provides assistance in computer incident investigations. Performs vulnerability assessments including development of risk mitigation strategies.

d. Required Qualifications

• TS/SCI w/ poly

• Requires 12 to 15 years with BS/BA or 10 to 13 years with MS/MA or 10+ years with PhD

• Candidate shall demonstrate strong experience with customer's Assessment and Authorization (A&A) process (e.g. RMF, NIST800-53, ICD503)

• Candidate shall demonstrate strong understanding of Cyber Security Policies

• Candidate shall have strong understanding of Networks and IT systems

• Candidate shall demonstrate strong communication skills

• Candidate shall demonstrate experience working with and across teams and handling multiple projects at once.

• Candidate shall demonstrate understanding of strong security practices and working with Security Officers

• Candidate should have accreditation tool experience (e.g., Xacta, Nessus, AppDetective, WebInspect)

• Certifications

• Candidate should have professional certifications (e.g., CISSP, CISM, CASP, CISA, Security+)

Location: Chantilly, Virginia
Type: Contract
Job #1901

Title: Systems Engineer Tech Specialist – Senior

Location: Chantilly, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Responsibilities: The Systems Engineer should be able to plan, implement, test, and document enterprise-wide solutions for total systems or subsystems using internally created and/or off the shelf products. This includes analyzing and identifying all or part of the customer's existing or new systems requirements, taking into consideration the special technology needs, and establishing functional and technical specifications and standards, solving interface problems, defining input/output parameters, and ensuring integration of the entire system or subsystem. The Systems Engineer will be responsible for strategic level planning and roadmap development, working with all the teams in the area.

The candidate should:

• Perform traditional Systems Engineering at the enterprise/strategic level within the context of the political landscape, operational restrictions and changes, and interacting systems across the customer’s organization.

• Provide project management support with short turn-around projects; development of requirements, project plans, needs assessment, transition planning, and future looking roadmaps.

• Perform innovation research relevant to the project areas within the strategic roadmap.

• Be a self-starter with leadership capabilities and execution of roles and responsibilities with little to no supervision.

• Require minimal oversight to complete tasks in a timely manner.

• Identify integration issues and coordinate Technical Exchange Meetings (TEMs) to resolve them.

• Establish and maintain interpersonal relationships, as well as handle complaints, settle disputes and resolve conflicts.

• Have strong decision-making skills, as well as the ability to organize and prioritize work.

• Have demonstrated experience leading technical teams to develop/implement hardware/software requirements.

• Have demonstrated ability to quickly ramp up to support the customer’s needs, clearly communicate (orally & written) ideas, work autonomously, take the initiative to provide creative alternatives to intractable challenges or systemic problems.

• Have ability to influence others and move toward a common vision or goal.

• Have demonstrated strong customer and partner relationship building skills.

d. Required Qualifications

• TS/SCI w/ poly

• Requires 10 to 12 years with BS/BA or 8 to 10 years with MS/MA or 5 to 7 years with PhD

• Technical Degree (Engineering, Computer Science, Physics, etc.)

• IC or DoD experience

e. Desired Qualifications:

• Working knowledge of RF/Satellite communication systems

Location: Chantilly, Virginia
Type: Contract
Job #1871

Vista Program

Intelligence Analyst, Senior

Chantilly, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Provides analysis and research for industry, infrastructure, technology, country, geographic area, biographic and targeted vulnerability. Prepares assessments of current events based on the sophisticated collection, research and analysis of classified and open source information. Develops and maintains analytical procedures to meet changing requirements and ensure maximum operations. Collects data using a combination of standard intelligence methods and business processes. A candidate will provide both technical and regional analysis in support of USG customer and will be responsible for reviewing and researching unclassified and classified databases, preparing analysis, reports, and providing briefings. The candidate will be responsible for internal and external collaboration.

Required Qualifications:

Requires Bachelor’s degree in International Relations, Political Science, Foreign Language or Culture, History, Public Policy, Intelligence Analysis, or related academic field
6 years of practical experience in intelligence analysis, targeting, or open source analysis, or technical analysis.
6 years’ experience in IT, telecom, network/computer/data security
Proven ability to research and analyze data from a variety of sources and to present findings in clear and concise written reports
Demonstrated experience in the intelligence lifecycle
Proven experience with (drafting, coordinating, reviewing) intelligence community official communications methods
Demonstrated ability to work well with teams or individually with minimal supervision
Demonstrated working knowledge of RF and telecommunications protocols

Desired Qualifications:

MS Degree
Ability to improve processes or methods of analysis
Prior CI or risk management experience

Location: Chantilly, Virginia
Type: Contract
Job #1870

Vista Program

Cyber Security Analyst – Senior / Expert

Chantilly, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Detects, mitigates, and analyzes threats. Conducts research and evaluates technical and all-source intelligence with specific emphasis on user behavior and patterns in a dynamic and changing mission environment. Analyzes technical and non-technical data and metadata to determine normal patterns of events, proactively identify abnormalities, and determine root-cause of abnormalities. Correlates threat data from various sources. Prepares assessments and presentations of analyses and findings. Develops and maintains analytical procedures to meet changing requirements and ensure maximum operations. Collects data using a combination of standard intelligence methods and business processes. Produces high-quality papers, presentations, recommendations, and findings for senior intelligence officials.

Required Qualifications:

Bachelor’s degree (or equivalent) in Cybersecurity, Information Security, IT, EE, Network Engineering, Computer Science, or related field
Demonstrated 6 years experience in three or more specific areas to include: analysis, network engineering, networking security, penetration testing, red teaming, hardware engineering, software reverse engineering, and computer exploitation.
Proven proficiency with at least three (3) or more of the following: mobile security, telecom protocols, operating systems (Windows, iOS, Android, or Linux), reverse engineering, forensics, network analysis, vulnerability assessment or malware forensics.
Demonstrated working knowledge of software development and some demonstrated proficiency in scripting and/or programming languages and database development
Proven experience in network analysis methodologies
Prior experience with one or more of the following tools: Splunk, ArcSight, intrusion detection/prevention system, network anti-virus technologies.
Demonstrated experience in drafting reports, documenting case details, and able to summarize findings and recommendations based on system analysis.
Demonstrated ability to work well with teams or individually with minimal supervision

Desired Qualifications:

MS degree in technical field
Experience within IC community
Relevant Certifications: CCFP, GCIA, OSCP, CEH, CISSP, or Security+
Publications in peer-reviewed journals
Experience ensuring quality assurance and the spreading of best practices
Experience with operational communications

Location: Chantilly, Virginia
Type: Contract
Job #1869

Vista Program – Cyber Security/Pentester
Chantilly, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Responsibilities:

Seeking a penetration tester for an Intelligence Community (IC) customer mission system. The successful candidate will perform vulnerability assessments and penetration testing following the customer’s prescribed scope statement with authorities derived from the customer’s Enterprise cyber security organization. The ideal candidate must display familiarity with Windows and Linux Mobile operating systems and be able to conduct network and security vulnerability analysis. Specifically, the candidate will analyze mission systems to help assess vulnerability to compromise from adversaries. The successful candidate must have prior experience with scope defined penetration testing using mainly open source tools.

Penetrate desktops, servers, applications, operating systems, and security systems to gain root/admin access
Provide black-box penetration testing utilizing tools and techniques to conduct cybersecurity evaluations for highly specialized network communication systems
Modify open source exploits to bypass/evade antivirus, firewalls, hardened systems, and IDS/IPS systems
Modify computer/system/network attacks, exploits, and Metasploit modules to create variations that evade detection
Perform reconnaissance, privilege escalation persistence, lateral movement, and payload generation for multiple targets
Hide digital artifacts and communications to evade antivirus, firewalls, IDS/IPS systems, Wireshark, and tcpdump
Work independently to analyze, research, and solve technical problems
Leverage existing business processes and document new repeatable business processes and procedures where necessary
Research external information on cybersecurity events, incidents, threats, and technical vulnerabilities

Qualifications

Bachelor’s degree (or equivalent) in Cybersecurity, Information Security, IT, EE, Network Engineering, Computer Science, or related field
Demonstrated 6 years experience in three or more specific areas to include: analysis, network engineering, networking security, penetration testing, red teaming, hardware engineering, software reverse engineering, and computer exploitation.
Experience with Kali Linux and Metasploit tools
Experience with programming/scripting: Python, Powershell, Ruby, C, JavaScript, etc
Strong written and verbal communication skills, including ability to explain complex technical topics to non-technical audiences

Desired:

MS degree in Computer Science, Engineering, Computer Forensics, Network Security, or equivalent technical experience
4 years of exploit development, computer/network security, or network traffic analysis using analytical tools
Expert knowledge of networking components/devices and various OS/applications in Linux and Windows environments
At least one of the following certifications: CISSP, OSCP, CEH, CEPT, GPEN, EnCE, GASF, GSFE, or BLCE

Location: Chantilly , Virginia
Type: Contract
Job #1865

Title: Program Manager

Location: Chantilly, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Job Description:

Working with Agile teams within the Sponsors organization.Assist current and new partners in standing-up innovation capabilities such as innovation centers, labs or incubators.

Partner with leadership (internal and external) in defining and communicating their vision for major organizational
transformations.
Optimizing performance, cost, and schedule by ensuring project objectives are achieved on schedule and at the lowest cost
compatible with user requirements.
Providing official weekly project status report.
Preparing contractor performance report (CPR) upon contract closeout.

REQUIRED QUALIFICATIONS:

Education: Bachelor’s degree in Computer Science, Engineering, or a related technical discipline, or the equivalent
combination of education, technical certifications or training, or work experience
Minimum of 11 years related experience.
Technical Skills: Confluence, JIRA, Safe Agile or Lean Agile startup, DevSecOps, Meridian Software application, Bluescape.
Security Clearance Level: Top Secret/SCI with Polygraph

Preferred Qualifications:

Experience with defining, mapping, tracking and reporting on project milestones.
Experience with Business Process Improvement.
Experience leading system development teams and manage high level stakeholders.

Location: McLean, Virginia
Type: Contract
Job #1832

Title: Linux Systems Adminstrator

Location: McLean, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Cornerstone Defense has an immediate need for a Linux System Engineer to be a member of the IT team that is the Londinium Program. The Londinium Program is comprised of linux (80%), windows (20%), virtualization, storage, network, HW, and data center engineers that works as a team and, offers rewarding opportunities to think outside the box in order to deliver innovative and sustainable IT environments to our customers. The Londinium system administrators work both independently and as a member of an integrated product team supporting a wide variety of basic and complex computing and network configurations and must have proven Linux experience.

The on-site system administrator will support the installation, configuration, maintenance, failure analysis and recovery, performance monitoring, data storage management, and security management of the data center environment. The system engineer will haveexperience in at least one, preferably two, scripting languages (shell, Perl, Powershell, Python, etc.) and shall have proven experience administering Linux operating systems in the conduct of their duties. The right candidate will have proven experience in problem solving.

Specific duties and responsibilities of the Linux System Engineer may include, but are not limited to:

Architecting, deploying, and managing large Linux networked environments including deployment and configuration
Installing, configuring, updating and removing system and application software
Hardening Linux serverinstallations
Installing, configuring, updating and removing system hardware (servers, workstations, transceivers, network interface cards)
Configuring NFS, SAMBA, and SAN
Monitoring and allocating system resources (CPU, memory, and storage space)
Proven experience creating, implementing, and maintaining scripts for process automation, infrastructure monitoring, and proactive reporting
Auditing system log files, to include compliance audits
Diagnosing and troubleshooting hardware and software problems
Documenting hardware and software configurations, maintenance history, and backup history
Implementing up-to-date system policies and procedures
Updating/patching system operating systems
Proven experience in all aspects of managing large Linux environments including the use of configuration management tools like Puppet and Ansible for centralized management and configuration of systems to enforce security controls
Ability to utilize analysis tools to resolve complex network, systems, and application performance problems
Responding to inquiries concerning all aspects of computer and network operations
Creating and managing user/group accounts (ex: Active Directory (AD))

Minimum Qualifications and Education:

Bachelor’s Degree in computer science, information systems, engineering, mathematics, or equivalent experience, and six (6) years of relevant experience (see below bullets). Fourteen (14) years of equivalent military training and/or experience in an information technology field will be considered in lieu of a degree.
Five (5) years or more of total intelligence community relevant work experience as a system administrator
Five (5) years’ experience as a system administrator

Location: McLean, Virginia
Type: Contract
Job #1831

Title: Systems Engineer, Expert (LINUX)

Location: Herndon, VA

*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Raytheon Technologies has an immediate need for a Senior Linux Systems Administrator to be a member of the IT team that is the Londinium Program. The Londinium Program is comprised of linux (80%), windows (20%), virtualization, storage, network, HW, and data center engineers that works as a team and, offers rewarding opportunities to think outside the box in order to deliver innovative and sustainable IT environments to our customers. The Londinium system administrators work both independently and as a member of an integrated product team supporting a wide variety of basic and complex computing and network configurations and must have proven Linux experience.
The on-site system administrator will support the installation, configuration, maintenance, failure analysis and recovery, performance monitoring, data storage management, and security management of the data center environment. The system engineer will haveexperience in at least one, preferably two, scripting languages (shell, Perl, Powershell, Python, etc.) and shall have proven experience administering Linux operating systems in the conduct of their duties. The right candidate will have proven experience in problem solving.
Specific duties and responsibilities of the Senior Linux System Engineer may include, but are not limited to:
-Architecting, deploying, and managing large Linux networked environments including deployment and configuration
-Installing, configuring, updating and removing system and application software
-Hardening Linux serverinstallations
-Installing, configuring, updating and removing system hardware (servers, workstations, transceivers, network interface cards)
-Configuring NFS, SAMBA, and SAN
-Monitoring and allocating system resources (CPU, memory, and storage space)
-Proven experience creating, implementing, and maintaining scripts for process automation, infrastructure monitoring, and proactive reporting
-Auditing system log files, to include compliance audits
-Diagnosing and troubleshooting hardware and software problems
-Documenting hardware and software configurations, maintenance history, and backup history
-Implementing up-to-date system policies and procedures
-Updating/patching system operating systems
-Proven experience in all aspects of managing large Linux environments including the use of configuration management tools like Puppet and Ansible for centralized management and configuration of systems to enforce security controls
-Ability to utilize analysis tools to resolve complex network, systems, and application performance problems
-Responding to inquiries concerning all aspects of computer and network operations
-Creating and managing user/group accounts (ex: Active Directory (AD))

Minimum Qualifications and Education:

Bachelor’s Degree in computer science, information systems, engineering, mathematics, or equivalent experience, and eight (8) years of relevant experience (see below bullets). Sixteen (16) years of equivalent military training and/or experience in an information technology field will be considered in lieu of a degree.

Five (5) years or more of total intelligence community relevant work experience as a system administrator
Seven (7) years’ experience as a system administrator

Location: Chantilly, Virginia
Type: Contract
Job #1825

Network Security Engineer – Expert

Chantilly, VA

Responsibilities:

Act as a technical management resource for information system security matters.
Provides technical and programmatic Cyber Security and Information System Security Management Services to internal and external customers in support of network and information security systems.
Ensures the development and implementation of information security policy, requirements, and procedures within an organization’s business processes.
Reviews documentation from information obtained from customer using accepted guidelines such as RMF (Risk Management Framework).
Provides assessment and authorization (A&A) management support by guiding the development of all documentation necessary to complete the A&A process to include system security plans, contingency plans, and other associated documentation.
Conducts complex vulnerability assessments to include; development of risk mitigation strategies with the customer; adjudicating based on assessing the vulnerabilities, threats, and risk associated with assessment.
Reviews system configurations and scan tool results in order to determine system compliance and report results.
Analyzes policies and procedures against Federal laws and customer regulations and provides recommendations for closing gaps.
Develops strategies to comply with privacy, risk management, and e-authentication requirements.
Provides cyber security and information system security support for the development and implementation of security architectures to meet new and evolving security requirements.
Evaluates, develops and enhances security requirements, policy and tools.
Provides assistance in computer incident investigations.
Performs vulnerability assessments including development of risk mitigation strategies.

Required Qualifications:

Requires 12 to 15 years with BS/BA or 10 to 13 years with MS/MA or 7 to 9 years with PhD
Candidate shall demonstrate strong experience with customer's Assessment and Authorization (A&A) process (e.g. RMF, NIST800-53, ICD503)
Candidate shall demonstrate strong understanding of Cyber Security Policies
Candidate shall have strong understanding of Networks and IT systems
Candidate shall demonstrate strong communication skills
Candidate shall demonstrate experience working with and across teams and handling multiple projects at once.
Candidate shall demonstrate understanding of strong security practices and working with Security Officers
Candidate should have accreditation tool experience (e.g., Xacta, Nessus, AppDetective, WebInspect)
Candidate should have professional certifications (e.g., CISSP, CISM, CASP, CISA, Security+)

Location: Herndon, Virginia
Type: Contract
Job #1737

Web Developer
Tysons, VA
TS/SCI w Polygraph Required

Work in a team environment with a design first focus
Work on intelligence interactive applications.
Web application development.
Meet firm deadlines.
Work on simple or complex custom websites.

Required Qualifications:

Education: Bachelor’s degree in Computer Science, Engineering, or a related technical discipline, or the equivalent combination of education, technical certifications or training, or work experience.
Technical Skills: JAVA Script, HTML5, CSS3, Angular.js, Node.js, graphics and HTML design products

Preferred Qualifications: Experience using UX/UI design concepts. Experience creating CSS, Web framework and web applications. Strong sytle sheet skills. Design new experiences with graphics and HTML design products.

Equal Opportunity Employment
Cornerstone Defense is proud to be an Equal Opportunity Employer. We are committed to creating an inclusive working environment for all employees and to upholding diversity in our recruiting and hiring processes. All qualified applicants will receive equal consideration for employment without regard to sex, gender identity, sexual orientation, race, color, age, religion, national origin, physical or mental disability, protected Veteran status, or any other characteristic protected by law.

Location: Herndon, Virginia
Type: Contract
Job #1709

Title: Cyber Security SME
Location: Chantilly, VA
*Clearance: Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Description/Responsibilities:

Leading technical CI assessments of system/network topologies and write assessment reports based on findings
Analyzing IP network topologies for CI, technical and operational vulnerabilities and risk
Reviewing configurations of IP based network equipment such as routers, switches, firewalls, IDS/IPS, One Way Transfer (OWT) appliances for security policy and deployment guideline compliance, operating system and security patch updates, and configuration baseline
Conducting and evaluating automated system and network scans using tools such as Wireshark, NMap, Nessus, Nipper Studio
Supporting external customer projects by providing system and network engineering expertise and CI guidance in working groups, customer meetings, and in written communication to ensure the projects comply with sponsor policy and regulations while fulfilling operational needs
Providing CI recommendations to architecture and design reviews
Evaluating network operations using network management platforms, network scanning tools, auditing functions, and log reviews
Reviewing procurement processes of hardware, software and services to comply with CI and operational needs
Maintaining current knowledge of relevant technology as assigned
Working independently with little supervision and should be flexible to support customers located throughout the WMA

Required Skills/Qualifications:

Education: Bachelor’s degree in Computer Science, Engineering, or a related technical discipline, or the equivalent combination of education, technical certifications or training, or work experience.
Minimum of 16 years of experience: 10+ years of network/systems engineering experience in a secure environment and five or more years supporting mission-based TCP/IP networks
Experience with planning, configuring, and maintaining IP network products including routers, switches, wireless networking, VPN’s, IDS/IPS, Firewalls, One Way Transfer (OWT) appliances
Experience with configuring, securing, and maintaining cloud-based services such as Amazon Web Services (AWS), Microsoft Azure, Google Cloud, IBM Cloud
Demonstrated experience with communications protocols such as IP, TCP, UDP, MPLS, OSPF, IGRP, BGP
Hands on experience with one or more of the following network operating systems – Cisco iOS, MXOS, JunOS
Virtualized Platform (VMware, Virtua Box) experience
Experience with Windows Server (2012/2016), Windows Workstation (8.X, 10), Linux (Redhat/Debian), OSX operating system
Knowledge and experience with encryption products, methodologies and configuration
Hands-on experience with Network Packet Capture and System analysis tools such as Wireshark, Snort, NMAP, Nipper Studio, Nessus
Experience with Network Management products such as HP OpenView, Solarwinds, Nagios
Experience with Computer Aided Design programs such as CAD or Visio
One or more of the following certifications:
Amazon Cloud Service Certification (Solutions Architect Associate or higher) or similar cloud certification
Cisco Certified Network Associate (CCNA), Cisco Certifed Network Professional (CCNP). Juniper NCSP, or Juniper NCP
Microsoft Certified Solutions Associate (MSCA) or Microsoft Certified Solutions Expert (MSCE)
Red Hat Certified Engineer (RHCE) or Red Hat Certified Security Specialist (RHCSS)
Certified Information Systems Security Professional (CISSP)
Security Clearance Level: Top Secret/SCI with Polygraph

Desired Skills/Qualifications:

Experience with VOIP Telephony Systems
Firm understanding of business legal structures and business operations (contracts, accounts receivable, accounts payable, business banking, procurement processes, and logistics)
One or more of the following certifications:
- VMWare Certified Professional vSphere 5 (VCP5)
- Project Management Professional (PMP)
- EMC, NetApp or similar certification

Location: Chantilly, Virginia
Type: Contract
Job #1666

Title: Senior Cyber & Signals Analyst
Location: Chantilly, VA
*Clearance: Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Description/Responsibilities:

Conducts research and evaluates technical and all-source intelligence with specific emphasis on user behavior and patterns in a dynamic and changing mission environment. Detects anomalous activity in raw and processed log files for deeper exploration using IC tools and databases. Differentiates between general and targeted or suspicious scanning. Identifies trends RF systems and performs behavior analysis. Uses Splunk dashboards to create alerts and investigate log files. Correlates threat data from various sources. Writes concise assessments that highlight findings supported by evidence, articulating the impact of conclusions.

Required Skills/Qualifications:

· Bachelor’s degree (or equivalent) in EE, Applied Math, Physics, or related technical field

· Minimum of 6 years of direct experience in Intelligence Community signals analysis or signal collection, with focus on wireless, cellular, satellite or terrestrial signals

· Demonstrated proficiency with at least two (2) analysis tools such as Splunk, Google Earth, Analyst Notebook, etc.

· Proven ability to research and analyze data from a variety of sources and to present findings in clear and concise written reports

· Demonstrated working knowledge of RF and telecommunications protocols

· Demonstrated working knowledge of IC data sets and tools for telecommunications analysis
Demonstrated ability to work well with teams or individually with minimal supervision

Desired Skills/Qualifications:

· MS degree in technical field

· Familiarity with other IC agencies

· Familiarity with SIGINT tasking and collection mechanisms

· Familiarity with RF testing and measurement system

· Familiarization with waveform engineering and analysis

Experience with operational communications

Location: Chantilly, Virginia
Type: Contract
Job #1665

Title: Cyber Watch Analyst – Day OR Night shift
Location: Chantilly, VA
*Clearance: Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Description/Responsibilities:

Looking for a Cyber Watch analyst to support a 12-hour Day/Night Shift schedule on the Computer Incident Response Team (CIRT) Watch Floor:

Collaborate between CIRT elements as necessary during incident detection and response stages
Respond promptly to all request for support whether telephonic, via e-mail or instant messenger

Create releasable finished intelligence products and reports for the IC as well as IC Senior Leadership
Maintain incident case management database for all reported incidents
Analyze incidents and events captured in the Case Management Database for trends, patterns, or actionable information
Review incidents and events captured in the Case Management Database after closure for investigative sufficiency and timeliness
Leverage existing business processes and document new repeatable business processes and procedures where necessary

Research external information on events, incidents, outages, threats, and technical vulnerabilities
Coordinate and disseminate the best course of action for the IC enterprise during cybersecurity events, incidents, outages, threats and technical vulnerabilities with IC-IRC fusion analysis team
Assess incidents to identify type of attack, collect evidence, and assess impact

Required Skills/Qualifications:

Bachelor’s degree (or equivalent) in Cybersecurity, Information Security, IT, EE, Network Engineering, Computer Science, or related field. An additional 4 years of experience in a cyber security related area may be substituted for a degree. Experience used as college equivalency must be in addition to other experience requirements.
Minimum 1 year experience in three or more specific areas to include: analysis, network engineering, networking security, penetration testing, red teaming, hardware engineering, software reverse engineering, and computer exploitation.
Minimum 6 months experience working with a Security Incident and Event Management (SIEM) system. (e.g.: ArcSight, Splunk Enterprise Security)
Minimum 6 months experience working in a Security or Network Operations Center (SOC or NOC).
Ability to research and analyze data from a variety of sources and to present findings in clear, concise reports.

Desired Skills/Qualifications:

Prior Intelligence Community experience.
Windows or Linux experience
Any relevant security certification

Location: Chantilly, Virginia
Type: Contract
Job #1664

Title: RF Analyst – Expert
Location: Chantilly, VA
*Clearance: Active TS/SCI w/ Polygraph needed to apply *

Company Overview:

Description/Responsibilities:

The candidate will provide analyst expertise support to a United States Government (USG) customer and will be an active contributing member of a security vulnerability and computer forensic analysis team

The candidate will provide Radio Frequency (RF) expertise to a United States Government (USG) customer and will be an active contributing member of a RF security vulnerability and analysis team. The candidate must be able to provide trending and pattern analysis support and will be responsible for reviewing operational traffic, researching unclassified and classified data sets, preparing target packages, and providing briefings and products for senior USG officers. In addition, the candidate will provide guidance, case management, and support to field collection operations. The candidate must exercise excellent social acumen and operational judgment and be able to respond quickly to high priority tasking. The candidate must understand the importance of using tradecraft to minimize exposure. The candidate should have a comfort level with speaking as s/he may be required to brief assessments at various forums across the Intelligence Community. Furthermore, the ideal candidate will:

Conduct RF testing, forensics, and analysis using commercial-off-the-shelf (COTS) and/or customer provided tools,
Support cyber security initiatives through both predictive and reactive analysis, articulating emerging trends to leadership and staff.
Provide management with discrepancy reports and end user documentation.
Communicate daily with program managers, management, customer representatives, and end users to ensure delivery of quality products.

Required Skills/Qualifications:

Bachelor’s degree (or equivalent) in Engineering, CS, Math, Physics or related field with focus on RF systems and technologies
Demonstrated familiarization with waveform engineering and analysis
Demonstrated familiarity with RF testing and RF analysis
Proven ability to research and analyze data from a variety of sources and to present findings in clear and concise written reports
Demonstrated working knowledge of software development and some demonstrated proficiency in scripting and/or programming languages and database development
Demonstrated ability to work well with teams or individually with minimal supervision

Desired Skills/Qualifications:

MS degree in technical field
Experience within IC community
Experience with planning and/or participating in red team exercises
Publications in peer-reviewed journals