Title:  Lead, Information Systems Security Engineer (Greenville, TX)

Job Title: Lead, Information Systems Security Engineer

Job Code: 31728

Job Location: Greenville, Texas

Schedule: 9/80

Job Description:

Apply current systems security engineering methods, practices and technologies to the architecture, design, development, evaluation and integration of systems and networks to maintain system security. Works closely with Government customers to ensure that the security protection needs, concerns and requirements are defined and implemented with appropriate fidelity and rigor, early and in a sustainable manner throughout the life cycle of system that will allow for the security assessment and authorization of the system of interest. Works with systems developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database products. Uses methods such as encryption technology, vulnerability analysis and security management. Responsible for integration of multiple methods into a cohesive system security boundary and environment and the policies and procedures necessary to continuously monitor and maintain such an environment. Configure and manage SEIM for high profile system in a live/operational environment.

May prepare assessment and authorization documentation, using multiple standards such as Risk Management Framework (RMF), Joint Special Access Implementation Guide (JSIG), DSS Assessment and Authorization Process Manual (DAAPM) and Common Criteria to achieve security authorization of supported systems. Maintains awareness of the most recent system security policies and directives to assist Systems Engineers, Project Engineers, other Information System Security Engineers, and Program Management with the analysis of user and system requirements and constraints. 

Represents program system security needs, concerns and requirements at customer meetings.

Essential Functions:

• Design and document application, network, and hardware.
• Responsible for data analysis and development of test plans and packages.
• Operate in a SAAS/PAAS environment.
• Develop test plans based on customer requirements.
• Develop and review strategies that align compliance requirements with enterprise products and services, networks, and cloud environments.
• Verify adherence to corporate and industry compliance standards and SLAs.
• Responsible for integration of multiple methods into a cohesive system security boundary and environment and the policies and procedures necessary to continuously monitor and maintain such an environment.
• Prepare assessment and authorization documentation, using multiple standards such as Risk Management Framework (RMF) to achieve security authorization of supported systems.
• Maintains awareness of the most recent system security policies and directives to assist Systems Engineers, Project Engineers, and other System Security Engineers, and Program Management with the analysis of user and system requirements and constraints.
• Represent program system security needs, concerns and requirements at customer meetings.
• Perform periodic vulnerability scans of systems to identify security vulnerabilities and provide remediation alternatives and conduct security risk assessments to ensure compliance with corporate security policies and adherence to best practices.

Qualifications:

• Candidate must be willing to work a flexible job schedule to include off-shift work and occasional overtime. 
• Bachelor’s Degree and minimum 9 years of prior relevant experience. Graduate Degree and a minimum of 7 years of prior related experience. In lieu of a degree, minimum of 13 years of prior related experience.
•  
• Requires strong knowledge of job area typically obtained through advanced education combined with experience. Typically viewed as having a specialty within discipline. May have broad knowledge of project management. At least 14 years of prior relevant experience, or Bachelor’s Degree and minimum 11 years of prior relevant experience. Graduate Degree and a minimum of 8 years of prior related experience.
• Position requires the ability to obtain and maintain a clearance at the secret level.
• Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA), Certified Cyber Security Architect (CCSA), Certificate of Cloud Security Knowledge (CCSK), or similar DoD 8140 certifications

Preferred Additional Skills:

• Risk Management Framework experience for Information Systems (IS) familiarity.
• Security Engineering with assessment and authorization experience. 
• Well versed in NIST 800-53r4 standards.
• Familiarity with RMF for Platform Information Technology (PIT) a plus.
• Experience with all RMF Overlays desired
• Experience with systems integration is desired. 
• Experience hardening Linux- and Windows-based operating systems desired.
• Requirements management experience is highly desirable
• Sets highest ethical standards for self and others.
• Experience with Budgeting desired
• Experience with contract bidding desired
• TS/SCI preferred
• Other duties as assigned.

#LI-EN2