Senior Specialist, Information Security Systems Engineer

Job Title: Information Security Systems Engineer
Job Code: 36850
Job Location: Rochester New York
Job Schedule: 9/80 (Every Other Friday Off)


Job Description:
The successful candidate will support a highly motivated engineering team in defining designing implementing documenting testing and sustaining security solutions on National Security Systems or other systems engineered for our government customers using current standards within National Institute of Standards & Technology (NIST) Risk Management Framework Special Publicationsand other NIST publications; Committee on National Security Systems Instruction (CNNSI) 1253 Joint SAP Implementation Guide (JSIG) and Federal Information Processing Standards (FIPS) to certify and achieve system accreditations. The successful candidate will work with system developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems networks and database products using methods such as encryption technology vulnerability analysis and security management.

Essential Functions:
Exercise skills in NIST Risk Management Framework (RMF) and all related NIST publications to include writing System Security Plans Security Control Traceability Matrix Continuous Monitoring Plan Security Assessment Plans & Procedures Security Concept of Operations Plan of Action and Milestones.
Perform skills in implementing/assessing security controls to include writing system security categorization memorandum recommending appropriate security control overlays define security control baseline based on defined system security categorization and approved security overlays and apply security controls to computing/network nodes and verify implementation of security controls.
Assist in systems/software engineering functions to include creation of data flow diagrams interface control documents perform trade studies and Static Application Security Testing (SAST) for Application Security and Development Secure Technical Implementation Guide (STIG) compliance using tools such as Fortify/Coverity and Gitlab as part of a DevSecOps Continuous Integration/Continuous Deployment (CI/CD) Pipeline and generation of summary reports.
Define/manage systems/security architectures including system security boundaries vulnerability management and risk mitigation and remediation strategies within networks systems applications and new technology initiatives (hardware software firewalls intrusion detection systems anti-virus systems and software deployment tools); Infrastructure/Platform/Software as a Service (IaaS PaaS SaaS) implementations in cloud environments and development of Configuration Management Plans (CMP).
Define/manage systems/security architectures including system security boundaries in on-premises data center systems and ultimately deploy to secure cloud-based system to include configuration and use of defense and assessment tools specific to each environment type.
This position is performed 100% onsite and cannot be performed remotely.

Qualifications:
Education
o Bachelors Degree and minimum 6 years of prior relevant experience.
o Graduate Degree and a minimum of 4 years of prior related experience.
o In lieu of a degree minimum of 10 years of prior related experience.
Must have active TS/SCI Security Clearance.
DoD 8140.03 IASAE Level 1 or 2 certification.

Preferred Additional Skills:
Perform Model Based System Engineering (UML SysML UAF).
Configure/operate vulnerability analysis tools such Tenable NESSUS Security products.
Develop dashboards configure rules and operate/administer SEIM/audit reduction tools (e.g. Splunk).
Active TS/SCI with poly is highly desired.

In compliance with pay transparency requirements the salary range for this role in New York state is $92500 - $171500. This is not a guarantee of compensation or salary as final offer amount may vary based on factors including but not limited to experience and geographic location. L3Harris also offers a variety of benefits including health and disability insurance 401(k) match flexible spending accounts EAP education assistance parental leave paid time off and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire schedule type and the applicability of collective bargaining agreements.