Position Summary
MAG Aerospace is seeking an Information Systems Security Engineer (ISSE) to support Product Manager Information Warfare Cyber Development (PdM IWCD) and their external mission partners.
The ISSE will provide system security engineering services and to support the Government to ensure core security engineering principles are implemented into assigned programs information systems architecture.
The role of the ISSE is to bridge the gap between high level security policies/requirements and technical/operational implementation of those requirements.
This is a fantastic opportunity to join a fast-growing team with multiple opportunities for upward advancement supporting C&S.
The C&S program delivers critical capabilities to counter current and future threats, enabling the next generation of warfighting capabilities from sensor to Soldier worldwide.
By applying game changing cyber technologies through agile development methodology, we enable battlefield dominance for our Warfighters.
*Remote/Telework is not available
Essential Duties and Responsibilities
Essential Duties and Responsibilities include the following.
Other duties may be assigned.
Apply current systems security engineering methods, practices and technologies to the architecture, design, development, evaluation, and integration of systems to maintain system security.Reviews and understands the living documents, how to address scans; and how to update the plan of actions/milestones (POAM).Develop, implement, and enforce information systems security policies ensuring system security requirements are addressed during all phases of the acquisition and Information System (IS) lifecycle.Evaluate proposed security architectures and designs and provide input as to the adequacy of those security designs to meet required security compliance objectives.Contribute to the security planning, assessment, risk analysis, risk management, assessment & authorization activities for a large complex software intensive system.Support the Government to resolve conflicting system security engineering requirements.ISSE will be responsible for taking information from the vendor and update in EMASS. Requirements
Minimum Requirements
Knowledge and Skills
Ability to develop and interpret security architectures, data flow diagrams, and publications that depict the system(s) architecture.Experience with modern networks, operating systems, databases, and virtual computing.Ability to identify areas of non-compliance and propose solutions designed to fulfill operational requirements and meet cybersecurity requirements simultaneously.Thorough knowledge of RMF (Risk Management Framework), and process to end of an ATO (Authority to Operate).Thorough understanding of the living documents, how to address scans, how to update the plan of actions and milestones (POAM).Hands on experience with EMASSMust have the ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners.Ability to teach and guide other cyber security personnel and engineers on the proper processes and procedures.Must possess a high degree of initiative and personal accountability requiring minimal supervisionDemonstrate excellent written and oral communications skills; organizational and analytical skills; the ability to express thoughts clearly; and the ability to effectively collaborate in a team environment.Clearance
Must currently possess an Active TS/SCI Clearance with Counterintelligence (CI) Polygraph.Education and Experience
Requires a bachelor’s degree in a related field; Four additional yeas of relevant technical experience may be substituted for degree.
10+ years of prior relevant experience or an equivalent combination of training, work experience and, preferably, applicable military experience.At least five (5) years must be specialized experience including system security analysis and implementation; design assurance or testing for INFOSEC products and systems; integration or testing for INFOSEC products and systemsCertified Information Systems Security Professional (CISSP)Preferred Qualifications
Experience with Twistlock and SonarQube.CISSP-ISSEP or CASP certification.Other Qualifications
Willingness to travel (up to 20%) within the organizational geographic Area of Responsibility.Ability to work in office/field/lab environments