Information System Security Engineer

CAE•Arlington, TX

7d•Onsite

About The Position

CAE is seeking information System Security Engineers (ISSE) for providing technical expertise and support to CAE programs and Cybersecurity staff. This position is NOT Remote. The individual hired for the position will work in-plant in Arlington Tx. The ISSE’s priority is responsibility for management, implementation and testing of our Program’s Cybersecurity Requirements. The ISSE is involved in most cyber-related technical decision making on programs. The ISSE advises the ISSM and ISSOs. The ISSE is involved in producing artifacts for the ATO’s body of evidence. The ISSE participates with software and hardware approvals assisting with research, providing analysis, assessing risk and making recommendations. The ISSE also works with the ISSM to produce Cybersecurity Impact Evaluations (CIE) to be reviewed/approved by the customer (for system changes). The ISSE has a thorough grasp of the Cyber requirements and system capabilities. The ISSE and the ISSE’s knowledge are required and must be on hand for the Authorization Event. The ISSE understands and helps define system architecture. The ISSE understands the security requirements and the tools required to satisfy those requirements. The ISSE understands how the simulator components interact and communicate.

Requirements

B.S. degree in Computer Science, Computer Engineering, Information Technology, Electrical Engineering or other technical equivalent.
Minimum of 5 years directly related experience in implementation of DOD security requirements and contractor/government information security. Both technical implementation and documentation.
At least one of DoD 8570.01-M Information Assurance Management (IAM) Level II Approved Baseline Certification (CAP, CASP+CE, CISM, CISSP (or Associate), GSLC, or CCISO.)
Experience with NIST Special Pamphlet (SP) 800-37 Guide for Applying the Risk Management Framework, NIST SP 800-53 Rev. 5 Security and Privacy Controls for Federal Information Systems and Organizations.
Experience documenting compliance/non-compliance of security controls in the Enterprise Mission Assurance Support Service (eMASS)
Incumbents must hold current or be eligible for DOD Personnel Security Clearance at Top Secret level.
Thorough knowledge and experience with the NISPOM, DOD security related instructions and directives, specific services’ security related regulations required.
Extensive experience with hardware/software platforms to include MS Windows, Linux, UNIX.
Military service or military environment familiarity, customs/protocol experience preferred.
Ability to communicate, interact and collaborate with management, executive personnel and military personnel including senior officer levels required.
Detail oriented; work with minimal supervision, analytical and problem-solving capability.
Direct experience with classified DoD networks.
Experience obtaining and maintaining ATO for classified network.
Must maintain IAM required Certification(s).
Due to U.S. Government contract requirements, only U.S. citizens are eligible for this role

Nice To Haves

Experience with System Administration of Windows and Linux Systems is highly desired. This is to include: deployment configuration per DoD Guidance (STIG’ing) patching scanning (ACAS/SCAP/E-STIG) scripting (Shell/Powershell/Ansible), documentation (SSP and work instructions) sustainment

Responsibilities

Assist in preparing, maintaining, and implementing SSPs, under ISSM oversight, for government approval.
Provide technical support to the ISSM and ISSO.
Participate in update/management of SCTM.
Assist in authoring and updating the Risk Assessment Report (RAR)
Author and update the Program Protection Implementation Plan (PPIP)
Assist in creating and maintaining System Diagrams, Data Flow Diagrams, Boundary diagrams.
Create/Maintain/Update of Ports Protocols and Services.
Sanitization Plans and procedures.
Assist in POA&M Management
Participate in Creating and executing the Security Assessment Plan/Procedures.
Assist in gathering COVs/LOVs and maintaining the sanitization plan.
Facilitate Software/Hardware Approvals.
Assist in Technical Security Management: Firewalls, Data Protection Controls, Patching, Encryption, Certificates, vulnerability scanning (ACAS/SCAP/E-STIG).
Continuous Monitoring · Patch/STIG
Annual ATO Package Review
Peer Reviewing program security documents.
Attending and presenting in Design reviews, Program Meetings, Technical Interchange Meetings and IPT meetings.
Assist in compliance monitoring.
Reviewing, evaluating and updating STIG Checklists.
Participate in providing input to Proposal cost and technical volumes.
Assist in Cost Account Management.
High level system administrator skills under Windows or Linux (prefer both).
Experience with system log auditing and analysis (Configuration and Execution).
Experience with Software Development.
Experience with Configuration Management (version control).
Occasional travel will be required.

Benefits

Comprehensive and competitive benefits package and flexibility that promotes work-life balance
A work environment where all employees are valued, respected and safe
Freedom to succeed by enabling team members to deliver, take initiatives and make decisions
Recognition, professional development, advancement and having fun!

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume