Lead Information Security Systems Engineer 1 22061

Job Title: Lead Information Security Systems Engineer

Job Location: Salt Lake CityUT

Job Code:22061

Job Schedule:9/80Employees work 9 out of every 14 days totaling 80 hours worked and have every other Friday off

Position Overview:

Are you ready to take your career to the next level Join our dynamic team where work/life balance is not just a promise but a reality. We believe in fostering a supportive and collaborative environment that prioritizes your wellbeing and professional growth. With access to experienced mentors and a culture that encourages continuous learning youll have the opportunity to expand your skills and advance your career. If youre passionate about making an impact and eager to grow alongside talented professionals we invite you to apply and become a valued member of our team.

We are lookingfor a highly motivatedInformation Security Systems Engineerto join our dynamic team supporting the Department of Defense. As a member of the project team you will support the certification and accreditation of Military Communication Systems Management Workstations and supporting Networking Infrastructure in accordance with Risk Management Framework FIPS and NSA Certification standards.

JobDescription:

• Works with systems developers or commercial product vendors in the design and evaluation of stateoftheart secure systems networks and database products.
• Uses methods such as encryption technology vulnerability analysis and security management.
• Responsible for integration of multiple methods into a cohesive system security perimeter and environment and the policies and procedures necessary to monitor and maintain such an environment. Prepares Assessment and Authorization documentation using multiple standards under RMF and derivative processes (DOD 8510.01M JSIG ICD503 CNSSI 1253 to achieve security authorization of supported systems.
• Represents program security needs concerns and requirements at customer meetings.
• Leads and contribute to all Product or Network Information Security Engineering activities pertaining to CDRLs trade studies security requirements analysis secure architecture development management & compliance with security controls design review milestones (SRR SDR PDR CDR) and security test/verification activities
• Performs system CONOP analysis and development
• Contributes to all Product and/or Security Engineering activities pertaining to CDRLs trade studies security requirements analysis secure architecture development management & compliance with security controls design review milestones (SRR SDR PDR CDR) and security test/verification activities
• Perform functional analysis timeline analysis detailed trade studies requirements derivation and allocation and interface definition studies to translate customer Information Security requirements into hardware and software specifications
• Provide Cyber technical leadership for development teams building new multidiscipline (mechanical electrical software hardware etc. products
• Provide Cyber technical leadership to development teams at internal and external gate reviews such as technical baseline reviews and design reviews
• Identify security risks threats and vulnerabilities of networks systems applications and new technology initiatives (hardware software crossdomain solutions cryptographic devices firewalls intrusion detection systems antivirus systems and software deployment tools)
• Ensure RMF Information Security requirements and Program Protection requirements are addressed in all phases of the System Development Lifecycle (SDLC)
• Conduct security architecture analysis to evaluate and mitigate risks
• DoD 8570.01M IASAE Level 3 certification (e.g. CISSP ISSEP ISSAP)

RequiredQualifications:

• Bachelors Degree with a minimum of 9years of prior related security experience. Graduate Degree with a minimum of 7years of prior related security experience. In lieu of a degree minimum of 13years of prior related securityexperience.
• Active Secret Security Clearance preferred

Preferred Qualifications:

• Active Top Secret/SCI Security Clearance preferred
• Minimum of 7 years of experience with vulnerability research and analysis of computer hardware appliances and/or embedded systems
• Minimum of 7 years of experience with Risk Management Framework (RMF) accreditation and authorization (A&A) processes to include RMF steps 14 (categorization controls selection control implementation security assessment) and standard body of evidence (BoE) package development
• Minimum of2 years of experience in writing and managing RMF body of evidence documents (e.g. System Security Plan (SSP) Security Compliance Traceability Matrix (SCTM) Certified Test Plan (CTP) Risk Assessment Report (RAR) Continuous Monitoring (ConMon) Plan Plans of Action and Milestones (POA&M) and Security Assessment Plans and Procedures (SAPP)
• Minimum 2 years of experience with system testing and evaluation methods and RMF assessment methodology & processes
• Minimum of 7years of experience with IC and DoD Cyber organizations including structure engagement customer relationship management and Business Development
• Minimum of 5 years of experience with DCO and OCO Cyber Effects Operations (CEO)
• Minimum of 5 years of experience leading technical teams decomposing requirements solution development implementation and testing/qualification across a portfolio
• Minimum of5 years of experience with computer hardware architecture components and protocols
• Minimum of 3 years of experience with Modular Open Systems Approach (MOSA) standards
• Experience in validating the NSA Crypto Modernization
• Experience developing security overlays data flow diagrams internal requirements CONOPs and interface control documents from customer and/or product requirements
• Experience with administration and securing Linux (RHEL/CentOS) Microsoft products including Windows Server 2016 Windows 10 Microsoft System Center Configuration Manager and WSUS
• Experience in configuration and use of cyber defense and vulnerability assessment tools such as ACAS/Nessus Rapid7 Nexpose etc
• Experience with architectures integrating VLANs VRF virtual switching multilayer switching Multilayer Firewalls ACLs secure configuration VPN (IPSEC)
• Foundational knowledge of Layer 3 architecture and diagramming within Visio or other commercial products
• Understanding of routing and switching as employed in telecommunications and network traffic
• General knowledge of common threats to information systems and how compromise would damage system integrity
• Exposure to modelbased systems engineering (MBSE) tool suites (e.g. Cameo) and associated processes
• Experience with application of STIGs CIS Benchmarks and/or SCAP and developing associated POAMs
• Working knowledge of embedded systems appliances FPGA singleboard computers chipsets and microprocessors
• Engineering experience in nontraditional national security missions

#LIHJ1#LICJ1