Information Systems Security Engineer

Information Systems Security Engineer

Palm Bay, FL / Colorado Springs, CO / Fort Wayne, IN

*Relocation Assistance Provided*

***DoD TS/SCI Security Clearance Required***

The Company

Our client is one of the largest, successful aerospace, defense and technology innovators in the world. They operate in over 100 countries and provide strategic solutions to the US, in order to protect and defend our freedoms worldwide, with advancing space access, supporting national security, civil service, and transportation safety. Their employees are passionate about their customers and their mission, as they enjoy working with cutting edge technologies and advancements that are positively impacting our society.

The Job

Applies current systems security engineering methods, practices and technologies to the architecture, design, development, evaluation and integration of systems and networks to maintain system security. Works closely with Government customers to ensure that the security protection needs, concerns and requirements are defined and implemented with appropriate fidelity and rigor, early and in a sustainable manner throughout the life cycle of system that will allow for the security authorization of the system of interest. Works with systems developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database products. Uses methods such as encryption technology, vulnerability analysis and security management. Responsible for integration of multiple methods into a cohesive system security perimeter and environment and the policies and procedures necessary to monitor and maintain such an environment. Will prepare Certification and Accreditation documentation, using multiple standards, to achieve security authorization of supported systems. Represents program security needs, concerns and requirements at customer meetings.

Functions

• Expected to contribute to Product or Network Information Security Engineering activities pertaining to CDRLs, trade studies, security requirements analysis, secure architecture development, management & compliance with security controls, design review milestones (SRR, SDR, PDR, CDR) and security test/verification activities.
• Perform functional analysis, timeline analysis, detailed trade studies, requirements derivation and allocation, and interface definition studies to translate customer Information Security requirements into hardware and software specifications.
• Provide Information Assurance (IA) technical leadership for development teams of new multi-discipline (mechanical, electrical, software, RF, etc.) products.
• Responsible for developing security overlays, data flow diagrams, internal requirements, CONOPs and interface control documents from customer / product requirements.
• Knowledge of security requirements, documentation, and risk mitigation strategies.
• Strong familiarity with Linux.
• Familiarity with security related tools – SIEM, malware, HIPS, etc.
• Identify security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives (hardware, software, cross-domain solutions, cryptographic devices, firewalls, intrusion detection systems, anti-virus systems and software deployment tools).
• Experience in writing and managing RMF body of evidence documents (e.g., System Security Plan (SSP), Security Compliance Traceability Matrix (SCTM), Risk Assessment Report (RAR), Continuous Monitoring (ConMon) Plan, and Security Assessment Plans and Procedures (SAPP).
• Knowledge of malware detection systems for Windows and Linux.
• This is an On-Site Position.

Qualifications

• Education:
• Bachelor’s Degree and minimum 6 years of prior relevant experience, or
• Graduate Degree and a minimum of 4 years of prior related experience.
• In lieu of a degree, minimum of 10 years of prior related experience.
• TS/SCI security clearance required.
• DOD 8140 IAT 2 certification.

Preferred Skills

• TS/SCI w/CI Polygraph is highly desired.
• Familiarity with Model Based System Engineering (UML, SysML, DoDAF).
• DoD 8140.03 IAT 3 or IASAE Level 2 certification.
• Experience in configuration and use of cyber defense and vulnerability assessment tools such as ACAS and SCC.
• Understanding of vulnerability analysis tools such as Tenable Security products.
• Experience in the content development and administration of SEIM/audit reduction tools (e.g., Splunk).
• Foundational knowledge of Layer 3 architecture and diagramming within Visio (or equivalent).
• AWS cloud security knowledge including architecture, design, deployment, and management of cloud security technologies.
• General knowledge of common threats to information systems and how compromise would damage system integrity.
• Supporting account management, PKI cert management, LDAP configuration/management.
• Scripting experience (Bash/Shell, Python, Perl, PowerShell).

Security Clearance

Please be aware this position requires a DoD TS/SCI security clearance. Security clearances may only be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment may be subject to government security investigation(s) and must meet eligibility requirements for access to classified information.