Specialist, Information Security Systems Engineer Secret - FL

About The Position

Requirements

• Bachelor’s Degree and a minimum of 4 years of prior relevant experience. Graduate Degree and a minimum of 2 years of prior related experience. In lieu of a degree, minimum of 6 years of prior related experience.
• Minimum of Collateral Secret security clearance required.
• Must be able to obtain and maintain a DOD 8140 certification (or NIST 800-181), appropriate for the position within 6-months of start

Nice To Haves

• Experience in configuration and use of cyber defense and vulnerability assessment tools such as ACAS and SCC
• Professional experience with RMF (Risk Management Framework) in embedded systems.
• Development and implementation of Anti-Tamper (AT) measures throughout the System Development Lifecycle.
• Assess systems for Critical Program Information (CPI).
• Assess threats via attack/countermeasure analysis.
• Conduct Verification and Validation activities.
• Use DoD 5200.39 for the identification and protection of CPI.
• Engineer trustworthy and secure systems in accordance with NIST 800-160.
• Develop and implement comprehensive Program Protection Plans (PPP) to safeguard critical program information (CPI) and technologies.
• Draft Program Protection Plans (PPPs), Cybersecurity Strategies, Security Classification Guides (SCGs), and AT Plans.
• Interact with customers to define AT requirements, solutions, trades, costs, implementation, system impacts, and effectiveness.
• Prior or current experience with the development and implementation of  Anti-Tamper (AT) for the protection of CPI throughout the System Development Lifecycle.
• Active TS/SCI Clearance is highly desired

Responsibilities

• NSA Type 1 Certification of cryptographic high assurance devices
• Collaborate with customers, internal program teams, and leadership to address program needs
• Provide DoD software selection and approval processes for COTS, GOTS, and FOSS
• Support security engineering activities, including basis of estimate development, requirements development, design, testing, configuration management, and maintenance of information systems and data
• Support the evaluation, qualification, testing, and delivery of security architecture improvements, obsolescence replacements, and vulnerability response projects
• Interact with customer, internal program team, and program/department leadership
• Assess security and privacy controls in embedded systems using NIST 800-53
• Utilize Risk Management Framework (RMF) accreditation and authorization (A&A) processes to include RMF steps 1-4 (categorization, controls selection, control implementation, security assessment) and standard body of evidence (BoE) package development
• Assist program security in the development of policies and procedures for emerging security technologies