Title:  Scientist, Systems Engineering (Security Architect) 1

Job Title: Scientist, Systems Engineering (Security Architect)

Job Code: 30451

Job Location: Greenville TX

Job Schedule: 1st Shift 9/80

Active Secret Clearance is required at the time of hire with the ability to obtain a Top Secret with SCI and CI Poly.

Job Description:

We are looking for a Scientist, Systems Engineering (Security Architect) to lead the security design and accreditation of our customer’s premier mission platform.  In this role, you will develop and refine security requirements, develop security plans and procedures, and lead the focus on securing and managing the security of cutting-edge mission systems.

Essential Functions:

• Trend Analysis and Threat Detection: Analyze and understand emerging trends in threats and threat detection.
• Strategic Roadmap Development: Set strategic roadmap objectives for the program based on threat prevention.
• Cybersecurity Baseline Requirements: Define the cybersecurity baseline requirements for the program and support funding activities for these requirements.
• Legacy System Adaptation: Adapt legacy implementations to address current and emerging threats, ensuring an appropriate security posture.
• Security Deployment Guidelines: Establish guidelines for the efficient and effective deployment of security practices within a DoD AF information management system.
• Body of Evidence Guidelines: Create guidelines for the efficient and effective collection and generation of the Body of Evidence necessary to attain an Authority to Operate (ATO) aligned with DoD and AF regulations, with regular reviews and updates.
• Software Update Guidelines: Set up update guidelines for commercial and open-source software and third-party packages to maintain a current security posture, including regular reviews and approvals of software updates and patches.
• Collaboration with Compliance and Vulnerability Teams: Collaborate closely with the compliance and vulnerability teams to establish program benchmarks and standards that meet delivery milestones, with regular communication and coordination meetings to ensure alignment and progress.
• Training and Awareness Programs: Provide training and awareness programs for the Engineering organization and relevant functions to promote a security-conscious culture.
• Continuous Improvement Process: Implement a continuous improvement process for security to enhance efficiency and reduce costs.
• Cross-Departmental Communication: Facilitate cross-departmental communication to address security concerns and implement best practices.
• Third-Party Agreements: Ensure that third-party agreements, such as sub-contracts, include appropriate security requirements and compliance measures. For example, specify the minimum OS or container build environment and include Fortify, Tivey, and Nessus scan results as contract deliverables.
• Travel 10%.
• Administering and managing Tenable Security Center in a complex environment.
• In-depth understanding of ACAS (Assured Compliance Assessment Solution) requirements and best practices for vulnerability management and compliance.
• Risk management framework based on NIST 800-53 documentation.
• Ability to operate ATO (Authority to Operate) processes.
• Solid understanding of networking.
• Trend Analysis and Threat Detection.
• Ability to set strategic roadmap objectives.
• Other duties as assigned by Supervisor.

Qualifications:

• Bachelor’s degree with 12 years of prior cyber security information systems industry experience.
• Graduate degree with 10 years of prior cyber security information systems industry experience.
• In lieu of a degree, a minimum of 16 years of prior cyber security information systems industry experience.
• Active Secret Clearance is required at the time of hire with the ability to obtain a Top Secret with SCI and CI Poly.
• Certified in Information Systems Security Professional (CISSP).
• Must be a US Citizen.

Preferred Additional Skills:

• Active Top Secret with SCI. 
• Air Force policy.
• Anti-tamper.
• Xacta.
• Additional certifications in specific technologies (e.g., hyperconverged infrastructure, Kubernetes, operating systems).

#LI-EN2