L3Harris

Job Title: Lead, Information Security Systems Engineer

Job Code: 9679

Job Location: Palm Bay, Florida

Job Description:

Applies current systems security engineering methods, practices and technologies to the architecture, design, development, evaluation and integration of systems and networks to maintain system security. Works closely with Government customers to ensure that the security protection needs, concerns and requirements are defined and implemented with appropriate fidelity and rigor, early and in a sustainable manner throughout the life cycle of system that will allow for the security authorization of the system of interest. Works with systems developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database products. Uses methods such as encryption technology, vulnerability analysis and security management. Responsible for integration of multiple methods into a cohesive system security perimeter and environment and the policies and procedures necessary to monitor and maintain such an environment. Will prepare Certification and Accreditation documentation, using multiple standards under RMF and derivative processes (DOD 8510, JSIG, ICD-503, CNSSI 1253), to achieve security authorization of supported systems. Represents program security needs, concerns and requirements at customer meetings.

Essential Functions:

• Perform functional analysis, timeline analysis, detailed trade studies, requirements derivation and allocation, and interface definition studies to translate customer Information Security requirements into hardware and software specifications.
• Expected to contribute to Product or Network Information Security Engineering, trade studies, security requirements analysis, secure architecture development, management & compliance with security controls, system lifecycle management and reviews and security test/verification activities.
• Provide Information Assurance (IA) technical leadership for development teams of new multi-discipline (mechanical, electrical, software, RF, etc.) products.
• Responsible for developing security overlays, data flow diagrams, internal requirements, CONOPs and interface control documents from customer / product requirements.
• Knowledge of security requirements, documentation, and risk mitigation strategies.
• Experience in writing and managing RMF body of evidence documents (e.g., System Security Plan (SSP), Security Compliance Traceability Matrix (SCTM), Risk Assessment Report (RAR), Continuous Monitoring (ConMon) Plan, and Security Assessment Plans and Procedures (SAPP).
• Experience with ICD-503 DoDI 8510.01 Risk Management Framework Accreditation Process.
• Work closely with Program Managers, Systems Engineering and other engineering disciplines.
• Identify security risks, threats and vulnerabilities of networks, systems, applications, and new technology initiatives (hardware, software, cryptographic devices, firewalls, intrusion detection systems, anti-virus systems and software deployment tools).
• Work is 100% on-site at Palm Bay, Florida

Qualifications:

• Education:
  • Bachelor’s Degree and minimum 9 years of prior relevant experience.
  • Graduate Degree and a minimum of 7 years of prior related experience.
  • In lieu of a degree, minimum of 13 years of prior related experience.
• Top Secret / SCI security clearance required.
• DOD 8570.01M IAT-3 or IASAE-2 certification.

Preferred Additional Skills:

• DoD 8570.01-M IASAE Level 3 certification.
• Direct experience with cryptographic systems used to protect space/ground communications.
• Direct experience with vulnerability analysis tools such Tenable NESSUS and Rapid 7 security products.
• Experience reviewing Operating Systems, Applications, and Network devices for complaince with DISA System Technical Implementation Guides (STIGs).
• Experience in configuration and use of cyber defense and vulnerability assessment tools such as ACAS, and SCC and HBSS.
• Experience with DoD accreditation of embedded systems
• Foundational knowledge of Layer 3 architecture and diagramming within Visio (or equivalent).
• Experience with NSA Type 1 End Cryptographic Units
• Experience deploying SIEM (Splunk or equivalent)
• Experience writing Basis of Estimate documents.
• Familiarity with Model Based System Engineering (UML, SysML, DoDAF).
• Active TS/SCI with CI Poly is highly desired.