Cybersecurity Engineer (FedRAMP)

Company Overview At Motorola Solutions, we believe that everything starts with our people. We’re a global close-knit community, united by the relentless pursuit to help keep people safer everywhere. We build and connect technologies to help protect people, property and places. Our solutions foster the collaboration that’s critical for safer communities, safer schools, safer hospitals, safer businesses, and ultimately, safer nations. Connect with a career that matters, and help us build a safer future. Department Overview As one of the original FedRAMP accredited 3PAOs, we remain one of the few companies who have helped Cloud Service Providers successfully navigate the FedRAMP process. With successful assessments of IaaS, PaaS, and SaaS clouds, our experience covers every type of cloud environment. We also specialize in helping organizations engineer secure clouds to meet FedRAMP's demanding requirements. Job Description Join our team as a Cybersecurity Engineer, where you will execute and/or lead advanced security assessments for client information systems. You will apply deep technical and compliance expertise to evaluate, advise, and guide clients through FedRAMP, FISMA, and NIST RMF requirements. You will also lead technical discussions, mentor team members, and support secure cloud architecture and risk mitigation activities, with a primary focus on FedRAMP. Key Responsibilities: Engage directly with clients through verbal communication to perform interviews, lead assessment discussions, and provide expert guidance and solutions. Utilize expertise in security engineering, secure architecture design, system and network security, authentication protocols, applied cryptography, and application security. Conduct comprehensive security assessments by analyzing cybersecurity documentation and performing evidence collection, interviews, and testing to evaluate compliance with relevant standards such as FISMA, NIST RMF, and FedRAMP. Perform system and network vulnerability scanning and analysis using automated and manual techniques with tools such as Nessus, ACAS, DB Protect, WebInspect, NMAP, and DISA STIGs/STIG Viewer. Perform identification and application of vulnerability remediations, fix procedures, and when necessary mitigation techniques. Identify, recommend, and validate vulnerability remediation actions, fix procedures, and mitigation strategies. Lead compliance-related and technical discussions, demonstrating expert understanding of security frameworks, architectures, and control requirements. Coordinate and guide cross-functional teams, ensuring effective collaboration, delivery, and communication. Prepare clear, accurate, and original reports, attestations, and customer-facing documentation. Inform customers of cybersecurity issues and concerns that need to be resolved and explain how compliance to various standards and frameworks is achieved. Work independently or as part of a client delivery team in a fast-paced, deadline-driven, remote environment. Preferred Qualifications: Bachelor's Degree or 5 years equivalent experience. 3 years of experience in performing and/or participating in FISMA based security Assessment and Authorization (A&A) activities. Must be a US Citizen and able to obtain an active SECRET Security Clearance. Strong technical background in security engineering, secure architecture, system and network security, authentication protocols, applied cryptography, and application security. Expert knowledge of Cloud Computing, FedRAMP, FISMA, NIST/DoD RMF, and NIST SP 800-series publications. Intermediate experience with testing and assessment tools such as Nessus/ACAS, SCC, DISA STIGs/STIG Viewer, NMAP, and Acunetix. Self-motivated and able to operate independently or as part of a team. Ability to author original assessment reports, attestations, and compliance documentation. Strong verbal communication, organizational, planning, and attention to detail skills. Successful compl ... (truncated, view full listing at source)