Senior IT Security Engineer - Mission System Cybersecurity & Compliance

About The Position

Requirements

• Bachelor’s or Master’s Degree in engineering, computer science, cybersecurity, Information Technology, related discipline or relevant experience
• Bachelor’s Degree: 4+ years of direct experience in cybersecurity, governance, risk management, or compliance roles
• Master’s Degree: 2+ years of direct experience in cybersecurity, governance, risk management, or compliance roles
• Experience with security compliance audits and frameworks
• A deep sense of accountability for your project decisions and actions
• Experience with system engineering processes (requirements, architecture, design, V&V) applied to cyber-systems
• Strong technical skills in cloud architecture, operating systems networks, security controls, vulnerability scanning, incident response
• Familiarity with relevant cyber standards/frameworks (e.g., NIST, RMF, ISO) and mission assurance/survivability concepts. sewp.nasa.gov+1
• Ability to work cross-functionally, with strong written and verbal communication, documentation skills, and ability to influence engineering teams
• Self-motivated, focused, and driven to meet critical deadlines
• Excellent organization and time management skills
• Excellent written and oral communication skills
• U.S. Person

Nice To Haves

• Familiarity with cloud security and compliance in AWS/AWS GovCloud environments
• Security certifications (e.g., CISSP, Security+)
• Experience with aerospace/space/mission systems context or defense environment
• Experience in the design, development and maintenance for cloud-based architecture supporting critical operations
• Performed leadership role or served directly on a team that went through full security audit

Responsibilities

• Stand up and maintain security controls aligned to established frameworks and requirements such as NIST 800-171, FARS/DFARS, NIST 800-53 and ITAR
• Develop, decompose, and trace cybersecurity requirements into architecture, design, implementation, test and verification activities of the mission system.
• Design, implement, monitor, and maintain security controls in mission systems – including configuration reviews, continuous monitoring, incident response, role-based access controls, etc.
• Lead or assist in internal and external security compliance audits; ensure audit readiness and timely remediation of findings
• Manage security and compliance documentation including SSPs, POA&Ms, Security Control Traceability Matrices (SCTM) and provide evidence of cybersecurity compliance/supporting authorization for operation
• Lead or contribute to incident response, forensics, security monitoring, and remediation when cybersecurity incidents or vulnerabilities are discovered
• Support training and awareness programs to foster a culture of security across the organization
• Evaluate and implement tools for log monitoring (e.g., SIEM), DLP, and secure configurations
• Plan for and implement resilience, survivability, maintainability, and upgradability of mission systems in the face of evolving cybersecurity threats
• Partner with other compliance teams and the IT Manager to administrate and track work within a GRC

Benefits

• Comprehensive health coverage: Medical, dental, and vision benefits, with 70% of premiums covered by the employer
• Paid time off: Three (3) weeks per year of vacation
• Retirement plan: Up to 4% employer match on 401(k) contributions
• Paid holidays: 11 company-recognized holidays
• Parental leave
• Educational reimbursement opportunities to support company objectives, continued learning, and career development