Cyber Security Systems Engineer

About The Position

Requirements

• An active TS/SCI security clearance with Counter-Intelligence poly
• Assessment and Authorization with experience using RMF
• Knowledge and application of NIST 800-53, ICD 503, Department of Defense Directives, and regulatory requirements
• Operational experience, with familiarity in security/event log auditing
• Security plan development and/or continuous monitoring for compliance with security plans
• The ability to certify and maintain information security related certifications. Security+ and CISSP are the most ideal (some other useful certs, CASP, GSEC, CISM)
• Task and project leadership qualities, to include peer mentoring, progress reporting, ownership of responsibility, etc.
• Effective analytical, problem solving, and communication skills
• Efficient organizational, multitasking, and time management abilities with the aptitude to work independently, as part of a team, and across multiple teams in various disciplines

Nice To Haves

• Vulnerability scanning and mitigation utilizing Nessus, ACAS, SCC, or similar tool
• Windows or UNIX/Linux operating system administration and secure configuration
• Network infrastructure (switch, router, firewall) Cisco
• SEIM management or use for analysis, such as Splunk or ELK
• VMWare and management of Virtual Machines
• Policy and procedure development
• Familiarity with content and application of DISA Security Technical Implementation Guides (STIGs)
• Definition and interpretation of audit requirements
• Development and support of a certification test plans and continuous monitoring plans

Responsibilities

• Aid in the development, validation, and submission of information system security plans, security test and evaluation plans, certification and accreditation or authorization packages, and plans of action and milestones in support of compliance requirements
• Take part in conducting, developing, planning, and coordinating risk assessments of information systems in development, test, production and research environments as required by established or newly determined compliance/audit requirements
• Conduct assessment and review of systems and networks within the environment to identify where systems/networks deviate from acceptable configurations, enclave policy, and local policy
• Aid in the development of training material related to compliance and audit requirements to assist employees in individual compliance/audits as applicable
• Complete technical requirements for networks and systems such as; vulnerability scanning, review of security/event logs, network analysis, security configuration review, and incident response on an as-needed basis

Benefits

• Penn State provides a competitive benefits package for full-time employees designed to support both personal and professional well-being.
• In addition to comprehensive medical, dental, and vision coverage, employees enjoy robust retirement plans and substantial paid time off which includes holidays, vacation and sick time.
• One of the standout benefits is the generous 75% tuition discount, available to employees as well as eligible spouses and children.