Information Systems Security Engineer (Secret Clearance) - Arlington, TX
Company: Altimeter Solutions
Location: Arlington
Posted on: March 19, 2023
Job Description:
Job Description:
- Seeking an experienced cybersecurity professional to provide
technical expertise for the design, development, integration,
testing, and fielding of Department of Defense (DoD) compliant
Information Systems and solutions used in military training
systems.
- 100% onsite role - no remote possibility.
Essential Functions:
- Ensure that SSE processes are aligned to, and adequately
documented in the IS's Systems Engineering Plan, Program Protection
Plan, and assist as needed in other technical documentation for
security engineering inputs and review (e.g., ISP, CSP).
- Support systems engineering technical reviews (SETR) by
ensuring that entry and exit criteria include cybersecurity and are
satisfied, and that design documentation meets the specified
cybersecurity requirements.
- Ensure that security requirements and technical security
controls are properly allocated and documented in design
specifications, technical publications, and manuals, etc.
- Ensure security requirements and technical security controls
are properly allocated and implemented in logistics, configuration
management, or program planning documents incorporating
cybersecurity considerations throughout the lifecycle of the
system.
- Ensure that security requirements and technical security
controls have been communicated and are reflected in the IS's
requirements database.
- Designs, develops, and implements security measures that
support software assurance and software security to ensure proper
security design of applications and remediation of security defects
in the IS's code base.
- Perform threat modelling, design threat models, and participate
in anti-tamper design of systems IAW Anti-Tamper Executive Agent
(ATEA) guidance.
- Support assessment and authorization (A&A) of IS (or IS
contained in security authorization boundaries) ensuring
cybersecurity is included in the design architecture and SDLC.
- Perform information type and system categorization security
impact that provide confidentiality, integrity, and availability
(CIA), security control overlay selection, and technical security
control tailoring.
- Design technical security architecture implementations,
security integrations, system hardening guidance, threat
countermeasures, and provide mitigation support for un-remediated
system vulnerabilities to lower risk impact to systems.
- Provide security engineering support of cybersecurity test
plans/procedures to ensure security requirements are verified and
validated as designed.
- Develop Risk Assessment Reports (RAR), Security Assessment
Plans (SAP), Security Assessment Reports (SAR), Security Control
Traceability Matrices (SCTM), and Security Impact Analyses
(SIA).
- Assist in technical inputs for development of System Security
Plans (SSP) and other applicable documentation pertaining to
Information System (IS) authorizations and system security
design.
- Assist and define technical measures that ensure proper
disposal of IS.
- Communicate with other engineering and architecting
disciplines, customers, and authorization officials to convey
cybersecurity aspects, design, implementation, and
mitigations.
- Provide governance and technical advice on selection of
cybersecurity products and cybersecurity-enabled products acquired
and used in the IS.
- Support future business initiatives in working proposal
efforts.
Qualifications:
- Bachelor's degree in a technical field, such as Cybersecurity,
Electrical Engineering, Systems Engineering, or Computer
Science
- Possess an active security clearance
- Possess an active IASAE level II or III certification in
accordance with DoDD 8140.01, Cybersecurity Workforce Management
and DoD 8570.01-M, Information Assurance Workforce Improvement
Certification
- 10+ years of relevant, demonstrable experience in fields of
cybersecurity, anti-tamper, or engineering computer technology
- Knowledge in the following areas:
- Knowledge of computer networking concepts and protocols and
network security methodologies.
- Knowledge of cybersecurity principles and organizational
requirements (relevant to confidentiality, integrity, availability,
authentication, non-repudiation).
- Knowledge of risk management processes (e.g., methods for
assessing and mitigating risk).
- Knowledge of integrating the organization's goals and
objectives into the architecture.
- Knowledge of national and international laws, regulations,
policies, and ethics as they relate to cybersecurity.
- Knowledge of cybersecurity principles.
- Knowledge of cyber threats and vulnerabilities.
- Knowledge of cybersecurity-enabled software products.
- Knowledge of specific operational impacts of cybersecurity
lapses.
- Skills in the following areas:
- Skill in applying cybersecurity methods, such as firewalls,
demilitarized zones, and encryption.
- Skill in determining how a security system should work
(including its resilience and dependability capabilities) and how
changes in conditions, operations, or the environment will affect
these outcomes.
- Skill in translating operational requirements into protection
needs (i.e., security controls).
- Abilities in the following areas:
- Ability to design architectures and frameworks.
- Ability to apply network security architecture concepts
including topology, protocols, components, and principles (e.g.,
application of defense-in-depth).
- Ability to apply an organization's goals and objectives to
develop and maintain architecture.
Preferred Additional Skills:
- JSIG compliance and implementation experience
- Proficiency in anti-tamper techniques for verification and
protection of Critical Program Information (CPI) per DoDI
5200.39
- Systems Administrator, Software Engineering, and/or Network
Engineering Experience
- Significant knowledge of Security Technical Implementation
Guides (STIGs)
- Master's Degree in a technical field
- Design and Architect experience of cybersecurity solutions
- Multiple DoD 8570.01-M certifications
- Prior experience utilizing systems engineering principles for
requirements on a technical effort
- Previous experience developing and accessing various artifacts
such as SOWs, requirements, and test documents
- Experience with DOORS requirements management software
- Experience in eMASS and Xacta RMF flow software
- Experience in cybersecurity activities associated with aircraft
and aircraft simulators/training devices
- Ability to travel up to 15%
Please see our website for more job openings:
https://altimetersolutions.com/job-board/
???????
Keywords: Altimeter Solutions, Arlington , Information Systems Security Engineer (Secret Clearance) - Arlington, TX, IT / Software / Systems , Arlington, Texas
Didn't find what you're looking for? Search again!
Loading more jobs...