Senior Specialist, Information Security Systems Engineer

About The Position

Requirements

• Bachelor’s Degree and minimum 6 years of prior relevant experience, or Graduate Degree and a minimum of 4 years of prior related experience or In lieu of a degree, minimum of 10 years of prior related experience.
• TS/SCI (SCI eligible) security clearance with CI Poly required.
• DOD 8140 IAT-3 or IASAE-2 certification.
• Demonstrated ability to work and grow in a dynamic, fast paced, team-oriented environment.

Nice To Haves

• Experience in C2S Cloud authorizations, FedRAMP and DISA CSP requirements.
• Experience in Model-Based Systems Engineering (MBSE).
• Windows and Linux system administration skills.
• Operating system certification.
• Experience in the content development and administration of SEIM/audit reduction tools (e.g., Splunk).
• DOD 8570.01M IASAE-3 certification is desired.
• Strong understanding of engineering processes, concepts and information security systems engineering principles (NIST SP 800-160 Vol1).
• System test and evaluation methods and RMF assessment methodology & process.
• Experience in Cyber Defense technologies.
• Experience with CI/CD, agile system development, and DevSecOps tools and processes.
• Understanding of system vulnerabilities and exploitation.

Responsibilities

• Experience in Risk Management Framework (RMF) accreditation and authorization (A&A) processes and standard body of evidence (BoE) package development.
• Experience with A&A package processing
• Experience in DoD software selection and approval processes for COTS, GOTS and FOSS.
• Experience in the application of DISA SRGs and STIGs.
• Experience in the implementation and use of cybersecurity tools (e.g. ACAS, SCAP, etc.).
• Experience with container security
• Support security engineering activities, including basis of estimate development, requirements development, design, test, configuration management and maintenance of information systems and data.
• Assist program security in the development of policies and procedures for emerging security technologies.
• Support vulnerability assessment activities as required.
• Support the evaluation, qualification, testing and delivery of security architecture improvement, obsolescence replacement and vulnerability response projects.
• Experience in configuration and use of cyber defense and vulnerability assessment tools such as ACAS, Nessus and SCC.
• Ability to work individually or as part of a cybersecurity team.
• Must be able provide direction based on program and customer requirements and compliance.
• Possess excellent speaking abilities and skills to brief leadership and customers.
• Possess ability to conduct research on security and other applicable topics as needed as the cybersecurity lead.
• Must be a self-starter that is able to understand requirements and develop plans and articulate needs to meet compliance and requirements.