Lead, Information Security Systems Engineer
Description:
Job Title: Information Security Systems Engineer
Job Code: CS20221603-78826
Job Location: Rochester, NY or Columbia, MD
Job Description:
The Information Assurance (IA) Systems Engineer will be involved in IA related architecture development, CONOPS development, trade studies, requirements analysis and flow down to hardware/software configuration items as well as requirements validation and verification. This position requires significant DoD IA expretise to support embeddment of cryptographic components within tactical radio platforms. Candidate will analyze and allocate system security requirements, such as those imposed by NSA, and those under DOD Information Assurance Certification and Accreditation Process (RMF), as well as National Information Assurance Partnership (NIAP) Common Criteria and National Institute of Standards and Technology (NIST) FIPS standards. The Candidate will also oversee and prepare NSA security certification documents, such as System Evaluation Document (SED), Key and Certificate Management Plan (KCMP), Security Verification (SV) Test Plans and Reports, Physical Configuration Audit (PCA) Plans and Reports. The Candidate will interact with mechanical, electrical and SW engineers to make sure designs meet security requirements. The Candidate should be familiar with Systems Security Engineering and Software/Firmware Security Engineering principles.
Essential Functions:
- Engineering analysis of IA/Security requirements.
- NSA Certification projects support
- Preparation of required NSA evaluation CDRLs
- Support of Security Verification and other IA/security related testing activities
- RMF process, Program Protection Planning Process, Applicable STIG analysis and process support
Basic Qualifications:
- BS degree in Engineering discipline with a minimum 9 years of relevant experience developing software-based engineering solutions (7 years with MS degree).
- Degree in Software Engineering or Computer Science
- Must have experience with security requirements analysis and specificatoin generation.
- Experience leading small product development teams and mentoring other engineers.
- Experience with emerging security standards and evolution of NSA certification processes.
- Experience with modern cyber-security evaluation processes, such as RMF, supply chain risk management, program protection planning and Secure Technical Implementation Guides (STIG) analysis
- Must have experience with certification of secure architectures.
- Active Secret U.S. Security Clearance or ability to obtain one.
- US citizenship is required.
Preferred Qualifications:
- Certified Information Systems Security Professional (CISSP) certification
- Highly motivated, a self starter, and able to operate with little supervision in diverse environments.
- Must have a successful track record in planning, executing, and tracking personal task assignments.
#LI-PM1