Systems Security Engineer (Hybrid)
About The Position
Nightwing provides technically advanced full-spectrum cyber, data operations, systems integration and intelligence mission support services to meet our customers’ most demanding challenges. Our capabilities include cyber space operations, cyber defense and resiliency, vulnerability research, ubiquitous technical surveillance, data intelligence, lifecycle mission enablement, and software modernization. Nightwing brings disruptive technologies, agility, and competitive offerings to customers in the intelligence community, defense, civil, and commercial markets. Systems Security Engineer (SSE) Work at the forefront of cybersecurity research and development, delivering capabilities to protect national security. Our projects cover the spectrum of security technologies, hardware architectures, and operating systems; if it runs code, we're interested in its security. We see the impact we have on our nation's security each day. We ensure our engineers have the tools they need to excel and we recognize superb results. We're seeking a Systems Security Engineer to ensure secure product integration into Department of Defense customer systems, managing security requirements, risk assessments, and authorization processes. You'll maintain security artifacts including Attack Trees, Key Management Plans (KMP), and other documentation, mapping to different requirements frameworks that customers leverage within their systems. Additionally, you'll help establish secure development best practices for our product teams based on customer requirements and industry standards.
Requirements
- Experience as a Systems Security Engineer on DoD platforms
- Application and integration of security tools and concepts to DoD systems
- Deep knowledge of DoD cybersecurity requirements, frameworks, and processes (RMF, Anti-Tamper, Cyber Survivability, Zero Trust, etc.)
- Experience with security artifact development (Attack Trees, Key Management Plans, System Security Plans, etc.)
- Strong technical writing and documentation skills
- Ability to map security requirements across different frameworks
- Experience interfacing with government security personnel and accreditation authorities
- Understanding of cryptographic implementations and key management
- Qualified applicants must meet the requirements to obtain and maintain a Secret government security clearance (active clearance preferred)
- U.S. Citizenship is required
Nice To Haves
- Direct experience developing Risk Management Framework (RMF) packages and Authorization to Operate (ATO) documentation for DoD platforms
- Knowledge of secure development practices and secure coding standards
- TPM and Secure Boot technologies
- Familiarity with OS internals (Linux and/or Windows)
- Understanding of virtualization security
- Security testing methodologies (penetration testing, vulnerability assessment)
- Experience with security requirements for embedded systems or kernel/driver software
- Knowledge of security assessment tools (static/dynamic analysis, fuzzing)
- Experience establishing secure development lifecycle processes
- Understanding of vulnerability management and CVE tracking
Responsibilities
- Ensure secure product integration into Department of Defense customer systems
- Manage security requirements, risk assessments, and authorization processes
- Maintain security artifacts including Attack Trees, Key Management Plans (KMP), and other documentation, mapping to different requirements frameworks that customers leverage within their systems
- Help establish secure development best practices for our product teams based on customer requirements and industry standards
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
