Senior Information Security Systems Engineer

L3Harris Technologies
Mclean, VA
Jan 05, 2022
Jan 19, 2022
Full Time
Description:Job Title: Senior Information Security Systems EngineerJob Code: SAS20211611-72802Job Location: Herndon, VA OR Colorado Springs, COEssential Functions:Provide leadership and technical execution support of information security activities associated with the authorization and accreditation (A&A) of information systems and data using NIST Risk Management Framework (RMF) (and derivative) processesSupport security engineering activities, including basis of estimate development, requirements development, design, test, configuration management and maintenance of information systems and dataAssist program security in the development of, policies and procedures for, emerging security technologies and proposalsSupport information assurance data collection and continuous monitoring activities for assigned information systemsDemonstrated knowledge and application of DevSecOps, Containerization/Orchestration, Cyber Cloud Architecture, Virtualization, automated SDLC processes, and Data Diode/Cross Domain System AccreditationExperience in writing and managing RMF body of evidence documents (eg, System Security Plan (SSP), Security Compliance Traceability Matrix (SCTM), Risk Assessment Report (RAR), Continuous Monitoring (ConMon) Plan, and Security Assessment Plans and Procedures (SAPP))Experience in securing operating systems (Windows, Linux, Cisco IOS, etc.), applications, and databasesExperience with application of Secure Template Implementation Guides (STIGs)Experience in configuration and use of cyber defense and vulnerability assessment tools such as ACAS and SCCAbility to interpret scan results from software scan tools that identify Application Development and Security STIG complianceAbility to understand written source code for custom developmentExperience in accrediting cross-domain systemsExperience in architecting and securing information systems in cloud environments.Experience in secure containerization, orchestration and microservicesExperience in securing virtual systemsSelf-motivation, able to work well independently and within inter-disciplinary engineering teams.Strong written and oral communication skills.Principles of data flows (eg, TCP/IP, OSI model).Travel up to 20%Work will be performed onsiteQualifications:Education:Top Secret//SCI w/Poly Security Clearance required.Bachelor's Degree and/or minimum 6 years of prior relevant experience, orGraduate Degree and/or a minimum of 4 years of prior related experience.DOD 8570.01M IAT 2 certificationPreferred Additional Skills:DOD 8570.01M IAT 3 certificationCISSP-CCSP, AWS Cloud, AZURE Cloud, or equivalent Cloud Engineering certificationStrong understanding of engineering processes, concepts and information security systems engineering principles (NIST SP 800-160 Vol1).Support the evaluation, qualification, testing and delivery of security architecture improvement, obsolescence replacement and vulnerability response projects.System test and evaluation methods and RMF assessment methodology & process.Experience in Cyber Defense technologies.Familiarity with Continuous Integration/Continuous Deployment (CI/CD), agile system development, automated SDLC processes and DevSecOps tools and processesExperience in Model-Based Systems Engineering (MBSE)Candidates with TS//SCI and Polygraph are highly competitive

Similar jobs