Sign in to apply on web or download the app for more options.
Job Description
## Minimum Clearance Required
Top Secret
## Responsibilities
I2X Technologies is a reputable technology services company to the Federal Government. Whether the focus is on space exploration, national security, cyber security, or cutting-edge engineering applications, I2X is ready to offer you the chance to make a real-world impact in your field and for your country. We provide long-term growth and development. Headquartered in Colorado, I2X is engaged in programs across the country and in more than 20 states. Our programs support multiple Federal agencies, the Department of Defense and often focused on the space initiatives of our government customers.
**I2X Technologies is seeking a Cyber A&A Engineer** to support ongoing activities for a customer in **Colorado Springs, CO**. **This position will be on-site and will require an active Top Secret clearance.**
- Process and track DD Form 2875 user account forms and required training for privileged and non-privileged accounts, perform annual validation of accounts, and work with system administrator on creation, modification, and removal of accounts
- Perform assessment of systems and networks within a virtual environment and identify where those systems deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits using STIG Viewer, SCAP, etc and active evaluations such as vulnerability assessments utilizing ACAS.
- Perform Security Technical Implementation Guide (STIG) assessments and hardening for both Windows, Red Hat Enterprise Linux (RHEL) systems, and networking equipment utilizing ConfigOS
- Develop test plans reflecting how STIG checks are implemented and be able to show expected outcomes of those checks
- Update Risk Management Framework (RMF) artifact documentation to ensure system hardening non-compliant is tracked and remediated
- Establish strict program control processes to ensure mitigation of risks and supports obtaining assessment and authorization of systems. Includes support of process, analysis, coordination, control certification test, compliance documentation, as well as investigations, software research, hardware introduction and release, emerging technology research, inspections, and periodic audits.
- Assist in the implementation of the required government policy (i.e., NISPOM, NIST, DoD), making recommendations on process tailoring, participating in and documenting process activities.
- Perform analyses to validate established cybersecurity controls and requirements and to recommend cybersecurity safeguards
- Support program test milestones through pre-test preparations, participating in the tests, analysis of the results, and preparation of required artifacts supporting authorization
- Prepare artifacts such as Test Results (TR), Authorization Boundary Diagrams (ABD), Network Topologies, Flow-diagrams, Hardware and Software listings, Ports, Protocols, and Services Management documentation, supporting Assessment and Authorization activities and maintain the Plan of Actions and Milestones (POA&M)
- Periodically conduct a complete review of each program support and operational system's audits and monitor corrective actions until all actions are closed
- Coordinate across the program to address identified deficiencies during RMF assessment activities
## Qualifications
**Required Experience:**
- 3+ years of related experience and may have post- secondary degree or training in a related discipline
- Active Top Secret clearance required to start
- IAT Level II/ IAM Level I DoD 8570 certification (Sec+ CE or equivalent)
- Security engineering skills with a working knowledge of cybersecurity technology and DoD/Federal cybersecurity policy (i.e., DoDI 8500.01, NIST SP 800-53, etc.)
- Understanding and utilization of Enterprise Mission Assurance Support Service (eMASS)
- Understanding of Risk Management Framework (RMF) Cybersecurity Lifecycle to include: identifying controls and overlays, generating testable requirements, identifying resilient architecture design, configuring, running, and scripting audit tools, providing analysis of vulnerability analyses, conducting verification testing for compliance assessment
- Knowledge of Software Assurance (SwA) static and dynamic code analysis (e.g. Fortify/SonarQube)
**Desired Experience and Skills**
- Windows and Red Hat Enterprise Linux (RHEL) system administration skills
- Previous background working in a virtual environment
- Previous background working with dockers and containers
- Administer ACAS and ESS (formally HBSS)- Previous experience with ConfigOS
**Essential Requirements:**
US Citizenship is required.
In compliance with Colorado’s Equal Pay for Equal Work Act, the annual base salary range for this position is listed . Please note that the salary information is a general guideline only. I2X Technologies considers factors such as (but not limited to) scope and responsibilities of the position, candidate’s work experience, education/training, key skills, internal peer equity, as well as, market and business considerations when extending an offer.
**Physical Demands:**
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job with or without reasonable accommodation.
While performing the duties of this job, the employee will regularly sit, walk, stand and climb stairs and steps. May require walking long distance from parking to work station. Occasionally, movement that requires twisting at the neck and/or trunk more than the average person, squatting/ stooping/kneeling, reaching above the head, and forward motion will be required. The employee will continuously be required to repeat the same hand, arm, or finger motion many times. Manual and finger dexterity are essential to this position. Specific vision abilities required by this job include close, distance, depth perception and telling differences among colors. The employee must be able to communicate through speech with clients and public. Hearing requirements include conversation in both quiet and noisy environments. Lifting may require floor to waist, waist to shoulder, or shoulder to overhead movement of up to 20 pounds. This position demands tolerance for various levels of mental stress.
I2X Technologies is an Engineering and Information Technology Company focused on providing Services to the Federal and State Government. I2X offers a competitive compensation program and comprehensive benefits package to our employees.
Key Responsibilities
Process and track DD Form 2875 user account forms and perform annual validation of accounts.
Perform passive and active assessments of systems and networks to identify deviations from acceptable configurations.
Conduct Security Technical Implementation Guide (STIG) assessments and hardening for Windows, RHEL, and networking equipment.
Develop test plans for STIG checks and demonstrate expected outcomes.
Update Risk Management Framework (RMF) artifact documentation to track and remediate non-compliance.
Establish program control processes to mitigate risks and support system assessment and authorization.
Assist in implementing government policies such as NISPOM, NIST, and DoD standards.
Perform analyses to validate cybersecurity controls and recommend safeguards.
Support program test milestones through preparation, execution, and artifact analysis.
Prepare artifacts including Test Results, Authorization Boundary Diagrams, and POA&M documentation.
Conduct periodic reviews of program audits and monitor corrective actions until closure.
Coordinate across the program to address deficiencies during RMF assessment activities.
Requirements
Post-secondary degree or training in a related discipline
Skills Required
Security EngineeringCybersecurity TechnologyDoD/Federal Cybersecurity PolicyEnterprise Mission Assurance Support Service (eMASS)Risk Management Framework (RMF)Software Assurance (SwA) Static and Dynamic Code AnalysisFortifySonarQubeSTIG ViewerSCAPACASConfigOSNISPOMNISTDoDI 8500.01NIST SP 800-53CommunicationProblem SolvingAttention to DetailWindows System AdministrationRed Hat Enterprise Linux (RHEL) System AdministrationVirtual Environment ExperienceDockerContainersACAS AdministrationESS Administration
Benefits
Competitive compensation program
Comprehensive benefits package
App exclusive · Free
Smart Job AI Coach
Your personal interview coach on every job — readiness tips, profile improvements, and role-specific prep. Available only in the Pulse Job app.
Interview readiness
See how prepared you are and what to improve for each role.
Personalized tips
Actionable suggestions based on your profile and the job.
After you apply
Keep coaching momentum from job detail through application success.