Colorado Technology Jobs

Colorado Jobs

Job Information

L3Harris Information Security Systems Engineer-TS.SCI in Colorado Springs, Colorado

Description:

Job Title: Information Security Systems Engineer-TS.SCI

Job Code: SAS20213003-58924

Job Location: Schriever Air Force Base, CO

Job Description:

Applies current systems security engineering methods, practices and technologies to the architecture, design, development, evaluation and integration of systems and networks to maintain system security. Works closely with Government customers to ensure that the security protection needs, concerns and requirements are defined and implemented with appropriate fidelity and rigor, early and in a sustainable manner throughout the life cycle of system that will allow for the security authorization of the system of interest. Works with systems developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database products. Uses methods such as encryption technology, vulnerability analysis and security management. Responsible for integration of multiple methods into a cohesive system security perimeter and environment and the policies and procedures necessary to monitor and maintain such an environment. Will prepare Certification and Accreditation documentation, using multiple standards such as NIST, NISP, DOD8510, ICD503 and JSIG, to achieve security authorization of supported systems. Represents program security needs, concerns, and requirements at customer meetings.

Essential Functions:

  • Ability to assist in “operationalizing” Security Operations Center (SOC) environments

  • Cybersecurity analytical skills

  • Ability to identify and address / mitigate cyber vulnerabilities

  • Ability to develop cybersecurity rule sets

  • Ability to engineer and develop cybersecurity solutions

  • Experience with Linux and Windows based systems

  • Provide technical execution support of information security activities associated with the authorization and accreditation (A&A) of information systems and data using NIST Risk Management Framework (RMF) (and derivative) processes, to include those processes used for DoD system accreditations

  • Support vulnerability assessment activities as required

  • Support the evaluation, qualification, testing and delivery of security architecture improvement, obsolescence replacement and vulnerability response projects

  • Support continuous monitoring activities for assigned information systems

  • Experience in writing and managing RMF body of evidence documents

  • Experience with application of Secure Template Implementation Guides (STIGs) on operating systems and applications

  • Experience in configuration and use of cyber defense and vulnerability assessment tools such as ACAS and SCC

  • Principles of data flows (e.g., TCP/IP, OSI model)

  • Self-motivation, able to work well independently and within inter-disciplinary engineering teams.

  • Strong written and oral communication skills

  • Attend meetings as required

  • Respond to queries from customers and/or program management

  • Travel domestically up to 10%

  • This position is on-site

Qualifications:

  • Education:TOP SECRET / Special Compartmental Information (SCI) Security Clearance required

  • Bachelor’s Degree and minimum 4 years of prior relevant experience, or

  • 2 years post-Secondary/Associates Degree and a minimum of 2 years of prior related experience, or

  • Graduate Degree and a between 0 and 2 years of prior related experience

  • DOD 8570.01M IAT 2 certification required to start

Preferred Additional Skills:

  • Experience with DoD Special Access Programs

  • Experience with Assured Compliance Assessment Solution (ACAS)

  • Experience with installation of Tenable.sc, Nessus, Nessus Manager, Nessus Agents, Nessus Network Monitor

  • Experience with configuring ACAS-related components

  • Experience with troubleshooting the installation/configuration of ACAS-related tools; to include troubleshooting scans to achieve the most optimal results

  • Experience/Ability to train others on ACAS-related tools

  • Experience with ArcSight (Loggers, Connectors, ESM, etc.)

  • Experience with Device42

  • Experience with VMware (ESXi, vSphere, vCenter, VMs, etc.)

  • Experience with WSUS

  • Familiarity with ELK

  • Familiarity with LogRhythm

  • Experience in Model-Based Systems Engineering (MBSE).

  • Windows and Linux system administration skills.

  • Host-Based Security System (HBSS) Administration.

  • Experience in the content development and administration of SEIM/audit reduction tools (e.g., Splunk).

  • Ability to support security engineering activities, including basis of estimate development, requirements development, design, test, configuration management and maintenance of information systems and data

  • Assist program security in the development of policies and procedures for emerging security technologies

  • Demonstrated expertise in managing RMF document artifacts (e.g., System Security Plan (SSP), Security Compliance Traceability Matrix (SCTM), Risk Assessment Report (RAR), Continuous Monitoring (ConMon) Plan, and Security Assessment Plans and Procedures (SAPP), to include submission and maintenance of documentation in tools such as eMASS and XACTA

  • DOD 8570.01M IASAE 2 or IAT Level 3 certification holders are highly competitive

  • Strong understanding of engineering processes, concepts and information security systems engineering principles (NIST SP 800-160 Vol1).

  • System test and evaluation methods and RMF assessment methodology & process.

  • Experience in Cyber Defense technologies

  • Experience with CI/CD, agile system development, and DevSecOps tools and processes

  • Understanding of system vulnerabilities and exploitation

  • TS//SCI with Polygraph is highly desired

In compliance with Colorado’s Equal Pay for Equal Work Act, the salary range for this role in Colorado is $82,500 - $153,500(salary ranges in other locations could differ). This is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. L3Harris also offers a variety of benefits including: health and disability insurance, 401(k) match, flexible spending accounts, EAP, education assistance, parental leave, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, schedule type, and the applicability of collective bargaining agreements.

L3Harris Technologies is proud to be an Affirmative Action/Equal Opportunity Employer. L3Harris is committed to treating all employees and applicants for employment with respect and dignity and maintaining a workplace that is free from unlawful discrimination. All applicants will be considered for employment without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender (including pregnancy, childbirth, breastfeeding or other related medical conditions), gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, characteristic or membership in any other group protected by federal, state or local laws. L3Harris maintains a drug-free workplace and performs pre-employment substance abuse testing and background checks, where permitted by law.

DirectEmployers