Senior Specialist, Information Security Systems Engineering Security Clearance

Position: Senior Specialist, Information Security Systems Engineering with Security Clearance
L3

Harris is dedicated to recruiting and developing high-performing talent who are passionate about what they do. Our employees are unified in a shared dedication to our customers' mission and quest for professional growth. L3

Harris provides an inclusive, engaging environment designed to empower employees and promote work-life success. Fundamental to our culture is an unwavering focus on values, dedication to our communities, and commitment to excellence in everything we do. L3

Harris is the Trusted Disruptor in defense tech. With customers' mission-critical needs always in mind, our employees deliver end-to-end technology solutions connecting the space, air, land, sea and cyber domains in the interest of national security.

Job Title:

Senior Specialist, Information Security Systems Engineering (ISSE) Job Code: 38251

Job Location:

Chantilly, VA

Job Schedule:

5/8 Monday - Friday

Job Description:

The successful candidate will support a highly motivated engineering team in defining, designing, implementing, documenting, testing and sustaining security solutions on National Security Systems, or other systems engineered for our government customers, using current standards within National Institute of Standards & Technology (NIST) Risk Management Framework, Special Publications 800-37, 800-53, 800-171, and other NIST publications;
Committee on National Security Systems Instruction (CNNSI) 1253, Joint SAP Implementation Guide (JSIG), and Federal Information Processing Standards (FIPS) to certify and achieve system accreditations. The successful candidate will work with system developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database products, using methods such as encryption technology, vulnerability analysis and security management.

Essential Functions:

* Perform incident response cyber threat identification, incident response support, defensive cyber operations coordination, malware analysis, supply chain risk management assessments per NIST SP 800-161, vendor provenance, counterfeit detection.

* Exercise skills in NIST Risk Management Framework (RMF) and all related NIST publications, to include writing System Security Plans, Security Control Traceability Matrix, Continuous Monitoring Plan, Security Assessment Plans & Procedures, Security Concept of Operations, Plan of Action and Milestones.

* Perform skills in implementing/assessing security controls, to include writing system security categorization memorandum, recommending appropriate security control overlays, define security control baseline based on defined system security categorization and approved security overlays, and apply security controls to computing/network nodes and verify implementation of security controls.

* Assist in systems/software engineering functions, to include creation of data flow diagrams, interface control documents, perform trade studies, and Static Application Security Testing (SAST) for Application Security and Development Secure Technical Implementation Guide (STIG) compliance using tools such as Fortify/Coverity and Gitlab as part of a Dev Sec Ops  Continuous Integration/Continuous Deployment (CI/CD) Pipeline, and generation of summary reports.

* Define/manage systems/security architectures including system security boundaries, vulnerability management and risk mitigation and remediation strategies within networks, systems, applications and new technology initiatives (hardware, software, firewalls, intrusion detection systems, anti-virus systems and software deployment tools); and Infrastructure/Platform/Software-as-a-Service (IaaS/PaaS/Saas) implementations in cloud environments.

* Define/manage systems/security architectures including system security boundaries in on-premises data center systems and ultimately deploy to secure cloud-based system, to include configuration and use of defense and assessment tools specific to each environment type.

* This position is performed 100% onsite and cannot be performed remotely.

Qualifications:

* Education

* Bachelor's Degree and minimum 6 years of prior relevant experience.

* Graduate Degree and a minimum of 4 years…