Contact Us Login Home

Founded by Veterans in Hampton Roads

Company Name:
C2 Essentials Inc
Approximate Salary:
Not Specified
Arlington, Virginia
United States
Information Technology
Position type:
Full Time
Experience level:
2 - 5 years
Education level:
Bachelor's Degree
Renuka Nair

IT SME, Senior


Provide Senior-level ISSE (Information System Security Engineer) support for SEA 06L Logistics IT systems that includes:

• Design and implement DevSecOps CI/CD pipelines to support provisioning of dynamic cloud-based resources in support of delivering multi-tiered applications, services, databases, and capabilities using various cloud services (native, 3rd party, or hybrid) • Produce clear and concise documentation and diagrams (e.g. technical data package, architecture, and process artifacts such as logical diagrams, interconnection diagrams, desktop procedures, and other relevant system documentation, etc.) that fully capture technical baselines and operational capabilities to guide operations and activities associated to enterprise scale cloud environments • Support the installation, integration, and management of cloud-based application development, test, and evaluation environment toolsets and established DevSecOps pipelines • Design and implement solutions in accordance with FEDRAMP, NIST, and other applicable standards • Assist in developing and implementing solutions when systems fail to meet security controls  • Assist in the development of new policies and changes to supporting documentation associated with RMF and information embedded in the eMASS Security Plan. • Assist in the performance of RMF Continuous Monitoring and the execution of the strategy that identifies what security controls are Formally monitored, and what the periodicity is, (real-time/constantly, Daily, Weekly, Monthly, Quarterly, Semi-annually, annually).  The contractor will provide assistance in the assessment and validation of formal monitoring actions. • Assist in the performance of Annual Security Reviews:  This includes the re-validation of specified security controls and updating of IT portfolio management records in DITPR-DON DADMS. • Assist in the identification of Application Security Gaps.  As emphasis in the Application Security & Development STIG (Navy-wide) has increased with the implementation of the RMF process, gaps in the Software Development Lifecycle with respect to Cyber security must be identified and mitigated through the use of the following methods: Formalized Code Reviews; Static Code Analysis; Dynamic Analysis; Application Threat Modeling (STIG requirement) utilizing the STRIDE methodology; Specific Security Testing (including FUZZ testing) • Provide other Cybersecurity support as required • Prepare briefings for senior leadership.


• Located in the Washington NCR for daily interface with NAVSEA client • BS degree or equivalent, and two to four years of related experience. • At least 2 years of specialized, hands-on experience in the performance of Cybersecurity functions using such methods as Formalized Code Reviews, Static Code Analysis, Dynamic Analysis, Application Threat Modeling (STIG requirement) utilizing the STRIDE methodology, and/or Specific Security Testing (including FUZZ testing). • Familiar with DEVSECOPS, FedRAMP, and DoD Cloud Security Requirements Guide (SRG). • DoD 8140.1 Baseline certification for IAM Level II or IASAE level II (e.g. CISSP, etc.) • Ability to present data in a logical, concise manner • Exceptional written and verbal communication skills. • Direct client support experience in a fast-paced environment. • Effective multi-tasking skills. • Oracle Data Warehousing (desired) • SQL (desired) • MS Project (desired)


• Secret Security Clearance


EOE M/F/Disability/Vet

Our Client will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.