L3Harris Information Security Systems Engineer-TS.SCI in Colorado Springs, Colorado
Job Title: Information Security Systems Engineer-TS.SCI
Job Code: SAS20213003-58924
Job Location: Schriever Air Force Base, CO
Applies current systems security engineering methods, practices and technologies to the architecture, design, development, evaluation and integration of systems and networks to maintain system security. Works closely with Government customers to ensure that the security protection needs, concerns and requirements are defined and implemented with appropriate fidelity and rigor, early and in a sustainable manner throughout the life cycle of system that will allow for the security authorization of the system of interest. Works with systems developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database products. Uses methods such as encryption technology, vulnerability analysis and security management. Responsible for integration of multiple methods into a cohesive system security perimeter and environment and the policies and procedures necessary to monitor and maintain such an environment. Will prepare Certification and Accreditation documentation, using multiple standards such as NIST, NISP, DOD8510, ICD503 and JSIG, to achieve security authorization of supported systems. Represents program security needs, concerns, and requirements at customer meetings.
Ability to assist in “operationalizing” Security Operations Center (SOC) environments
Cybersecurity analytical skills
Ability to identify and address / mitigate cyber vulnerabilities
Ability to develop cybersecurity rule sets
Ability to engineer and develop cybersecurity solutions
Experience with Linux and Windows based systems
Provide technical execution support of information security activities associated with the authorization and accreditation (A&A) of information systems and data using NIST Risk Management Framework (RMF) (and derivative) processes, to include those processes used for DoD system accreditations
Support vulnerability assessment activities as required
Support the evaluation, qualification, testing and delivery of security architecture improvement, obsolescence replacement and vulnerability response projects
Support continuous monitoring activities for assigned information systems
Experience in writing and managing RMF body of evidence documents
Experience with application of Secure Template Implementation Guides (STIGs) on operating systems and applications
Experience in configuration and use of cyber defense and vulnerability assessment tools such as ACAS and SCC
Principles of data flows (e.g., TCP/IP, OSI model)
Self-motivation, able to work well independently and within inter-disciplinary engineering teams.
Strong written and oral communication skills
Attend meetings as required
Respond to queries from customers and/or program management
Travel domestically up to 10%
This position is on-site
Education:TOP SECRET / Special Compartmental Information (SCI) Security Clearance required
Bachelor’s Degree and minimum 4 years of prior relevant experience, or
2 years post-Secondary/Associates Degree and a minimum of 2 years of prior related experience, or
Graduate Degree and a between 0 and 2 years of prior related experience
DOD 8570.01M IAT 2 certification required to start
Preferred Additional Skills:
Experience with DoD Special Access Programs
Experience with Assured Compliance Assessment Solution (ACAS)
Experience with installation of Tenable.sc, Nessus, Nessus Manager, Nessus Agents, Nessus Network Monitor
Experience with configuring ACAS-related components
Experience with troubleshooting the installation/configuration of ACAS-related tools; to include troubleshooting scans to achieve the most optimal results
Experience/Ability to train others on ACAS-related tools
Experience with ArcSight (Loggers, Connectors, ESM, etc.)
Experience with Device42
Experience with VMware (ESXi, vSphere, vCenter, VMs, etc.)
Experience with WSUS
Familiarity with ELK
Familiarity with LogRhythm
Experience in Model-Based Systems Engineering (MBSE).
Windows and Linux system administration skills.
Host-Based Security System (HBSS) Administration.
Experience in the content development and administration of SEIM/audit reduction tools (e.g., Splunk).
Ability to support security engineering activities, including basis of estimate development, requirements development, design, test, configuration management and maintenance of information systems and data
Assist program security in the development of policies and procedures for emerging security technologies
Demonstrated expertise in managing RMF document artifacts (e.g., System Security Plan (SSP), Security Compliance Traceability Matrix (SCTM), Risk Assessment Report (RAR), Continuous Monitoring (ConMon) Plan, and Security Assessment Plans and Procedures (SAPP), to include submission and maintenance of documentation in tools such as eMASS and XACTA
DOD 8570.01M IASAE 2 or IAT Level 3 certification holders are highly competitive
Strong understanding of engineering processes, concepts and information security systems engineering principles (NIST SP 800-160 Vol1).
System test and evaluation methods and RMF assessment methodology & process.
Experience in Cyber Defense technologies
Experience with CI/CD, agile system development, and DevSecOps tools and processes
Understanding of system vulnerabilities and exploitation
TS//SCI with Polygraph is highly desired
In compliance with Colorado’s Equal Pay for Equal Work Act, the salary range for this role in Colorado is $82,500 - $153,500(salary ranges in other locations could differ). This is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. L3Harris also offers a variety of benefits including: health and disability insurance, 401(k) match, flexible spending accounts, EAP, education assistance, parental leave, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, schedule type, and the applicability of collective bargaining agreements.
L3Harris Technologies is proud to be an Affirmative Action/Equal Opportunity Employer. L3Harris is committed to treating all employees and applicants for employment with respect and dignity and maintaining a workplace that is free from unlawful discrimination. All applicants will be considered for employment without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender (including pregnancy, childbirth, breastfeeding or other related medical conditions), gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, characteristic or membership in any other group protected by federal, state or local laws. L3Harris maintains a drug-free workplace and performs pre-employment substance abuse testing and background checks, where permitted by law.