Title:  Senior Associate, Info Security Systems Engineer Secret - Boulder, CO (714343, 714347, 714351)

Job Title: Senior Associate, Information Security Systems Engineer

Job Code: 31042

Job Location: Boulder/North Denver, CO

Job Schedule: 9/80

Job Description:

Applies current systems security engineering methods, practices and technologies to the architecture, design, development, evaluation and integration of systems and networks to maintain system security. Works closely with Government customers to ensure that the security protection needs, concerns and requirements are defined and implemented with appropriate fidelity and rigor, early and in a sustainable manner throughout the life cycle of system that will allow for the security authorization of the system of interest. Works with systems developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database products. Uses methods such as encryption technology, vulnerability analysis and security management. Responsible for integration of multiple methods into a cohesive system security perimeter and environment and the policies and procedures necessary to monitor and maintain such an environment. Will prepare Certification and Accreditation documentation, using multiple standards, to achieve security authorization of supported systems. Represents program security needs, concerns and requirements at customer meetings.

Essential Functions:

• Familiarity with RMF body of evidence documents (e.g., System Security Plan (SSP), Security Compliance Traceability Matrix (SCTM), Risk Assessment Report (RAR), Continuous Monitoring (ConMon) Plan, and Security Assessment Plans and Procedures (SAPP).
• Familiarity with A&A package processing in eMASS and Xacta.
• Familiarity with DoD software selection and approval processes for COTS, GOTS and FOSS.
• Experience in the application of DISA SRGs and STIGs.
• Experience in the implementation and use of cybersecurity tools (ACAS, SCAP, etc.).
• Support security engineering activities, including test, configuration management and maintenance of information systems and data.
• Assist program security in the development of policies and procedures for emerging security technologies.
• Knowledge of security requirements, documentation, and risk mitigation strategies.
• Understanding of AWS cloud including architecture, design, deployment, and management of cloud security technologies.
• Familiarity with Linux.
• Familiarity with security related tools – SIEM, malware, HIPS, etc.
• Identify security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives (hardware, software, cross-domain solutions, cryptographic devices, firewalls, intrusion detection systems, anti-virus systems and software deployment tools).
• Support vulnerability assessment activities as required.
• Support the evaluation, qualification, testing and delivery of security architecture improvement, obsolescence replacement and vulnerability response projects.
• Ability to work individually or as part of a cybersecurity team. Must be able to lead and provide direction based on program and customer requirements and compliance.
• Possess excellent speaking abilities and skills to brief leadership and customers.
• Possess ability to conduct research on security and other applicable topics as needed as the cybersecurity lead.
• Must be a self-starter that is able to understand requirements and develop plans and articulate needs to meet compliance and requirements.
• This is an On-Site Position
• Travel up to 25% to potential system deployment locations.

Qualifications:

• Education:
• Bachelor’s Degree and minimum 2 years of prior relevant experience, or
• Graduate Degree and a minimum of 0 years of prior related experience or
• In lieu of a degree, minimum of 6 years of prior related experience.
• Must have active Secret security clearance, TS/SCI preferred.
• DoD 8140.03 IAT Level 3 certification

Preferred Additional Skills:

• Understanding of Model Based System Engineering (UML, SysML, UAF).
• Understanding of configuration and use of cyber defense and vulnerability assessment tools such as ACAS and SCC.
• Familarity with vulnerability analysis tools such Tenable NESSUS Security products.
• Familarity with the content development and administration of SEIM/audit reduction tools (e.g., Splunk).
• Familarity with knowledge of Layer 3 architecture and diagramming within Model based System Engineering tools such as CAMEO (or equivalent).
• Supporting account management, PKI cert management, LDAP configuration/management.
• Scripting experience (Bash/Shell, Python, Perl, PowerShell).

In compliance with pay transparency requirements, the salary range for this role in California, Massachusetts, New Jersey, Washington, and the Greater D.C, Denver, or NYC areas is $79,000 - $146,500. The salary range for this role in Colorado state, Hawaii, Illinois, Maryland, Minnesota, New York state, Cleveland Ohio, and Vermont is $69,000 - $128,000. This is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. L3Harris also offers a variety of benefits, including health and disability insurance, 401(k) match, flexible spending accounts, EAP, education assistance, parental leave, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, schedule type, and the applicability of collective bargaining agreements