Information System Security Engineer with Security ...

SummarySeeking an experienced cybersecurity professional to provide technical expertise for the design, development, integration, testing, and fielding of Department of Defense (DoD) compliant Information Systems and solutions used in military training systems. Essential Duties and ResponsibilitiesReasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.Implement security and anti-tamper controls into training and simulation solutionsDefine DoD cybersecurity and anti-tamper requirements and interact with external stakeholders to refine/derive/allocate security control requirementsPerform trades studies, cost analysis, risk assessments, impact analysis, and effectiveness studiesCustomize cybersecurity solutions based on cost and effectivenessAssist programs and monitor program execution throughout product development lifecycle to ensure cyber and anti-tamper objectives are metLead, advise, and educate engineers on cybersecurity and anti-tamper concepts and solutionsPrepare briefings to obtain approvals by government agencies for contracted effortsPerform cybersecurity tasks in each phase of the Risk Management Framework (RMF)Create entire authorization packages to obtain an Authority to Operate (ATO) for DoD Information SystemsInteract with System Program Office and Authorizing Official key personnel during all phases of the RMFSupport Information System Security Managers and Officers (ISSM/ISSO) during Continuous Monitoring Phase of the RMF as technical Subject Matter ExpertApplies current systems security engineering methods, practices and technologies to the architecture, design, development, evaluation and integration of systems and networks to maintain system securityWorks closely with Government customers to ensure that the security protection needs, concerns and requirements are defined and implemented with appropriate fidelity early and in a sustainable manner throughout the life cycle of system that will allow for the security authorization of the system of interestWorks with systems developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database productsUses methods such as encryption technology, vulnerability analysis and security managementResponsible for integration of multiple methods into a cohesive system security perimeter and environment and the policies and procedures necessary to monitor and maintain such an environmentWill prepare Certification and Accreditation documentation, using multiple standards such as DITSCAP, NIACAP, DCID 6/3, Common Criteria, and NIST 800-37, to achieve security authorization of supported systems. Represents program security needs, concerns and requirements at customer meetingsQualifications and Education Requirements Bachelor''s degree in a technical field, such as Cybersecurity, Electrical Engineering, Systems Engineering, or Computer SciencePossess an active IASAE level II or III certification in accordance with DoDD 8140.01, Cybersecurity Workforce Management and DoD 8570.01-M, Information Assurance Workforce Improvement Certification10+ years of relevant experience in fields of cybersecurity, anti-tamper, or engineering computer technologyExperience creating authorization packages for DoD Information SystemsExperience implementing security controlsExperience with security control testing to include use of vulnerability and compliance scanners, creating test reports, and analyzing test resultsIn-depth knowledge of all phases of the RMFKnowledge of all phases of the Systems Development LifecycleKnowledge of NIST 800-53 security controls including their implementation and testingInterpersonal soft skills to effectively and smoothly interact with both internal and external stakeholdersExperience in requirements management to include deriving, allocating, and tracingAbility to work alone or in a team environmentSelf-motivated with substantial problem-solving abilitiesProficiency with Microsoft Office productsPreferred Skills Possess an active security clearanceJSIG compliance and implementation experienceProficiency in anti-tamper techniques for verification and protection of Critical Program Information (CPI) per DoDI 5200.39Systems Administrator, Software Engineering, and/or Network Engineering ExperienceSignificant knowledge of Security Technical Implementation Guides (STIGs)Master''s Degree in a technical fieldDesign and Architect experience of cybersecurity solutionsMultiple DoD 8570.01-M certificationsPrior experience utilizing systems engineering principles for requirements on a technical effortPrevious experience developing and accessing various artifacts such as SOWs, requirements, and test documentsExperience with DOORS requirements management softwareExperience in eMASS and Xacta RMF flow softwareExperience in cybersecurity activities associated with aircraft and aircraft simulators/training devicesAbility to travel up to 15%

Created: 2025-09-06