Title: Senior Specialist, Systems Engineer - Information Security
Greenville, TX, US, 75402
Job Title: Senior Specialist, Systems Engineer - Information Security
Job Code: 40753
Job Location: Greenville, TX
Job Schedule: 9/80 - Employees work 9 out of every 14 days – totaling 80 hours worked – and have every other Friday off.
Job Description:
Information Systems Security Engineer (ISSE) is part of a team which establishes, supports, and coordinates tasks related to Cybersecurity and Assessment & Authorization (A&A) to obtain and maintain Authorizations to Operate (ATOs) for delivered systems via the NIST 800 Series Risk Management Framework (RMF).
This position is part of a larger customer Information Assurance team, coordinating L3Harris efforts supporting the Information Owner, and assisting the ISSM, to implement actions needed to document current/future baselines and new capabilities in the NIST/RMF-approved process.
Essential Functions:
- Participate in risk and vulnerability assessments (as required) of information systems to identify vulnerabilities, risks, and protection needs, coordinate L3H efforts to develop Security Impact Assessments (SIAs) of proposed system modifications for submittal to the ISSM.
- This position combines an understanding of both software engineering and hardware engineering.
- Prepare and present technical results for internal and external program meetings.
- Develop, track and present technical metrics.
- Understanding of hardware level interdependencies for Infrastructure, Network, & Mission Processor requirements between multiple devices as well as understanding how software works in conjunction with hardware interdependencies.
- Manage requirements in either DOORS or JIRA through all phases of the project.
- Communicates within and outside of the organization to influence leadership to accept new practices, approaches, and concepts.
- Track all assigned systems for A&A (Assessment and Authorization) status and oversee accreditation/reaccreditation actions.
- Responsible for improving upon existing processes or establishing new processes and systems.
- Work cross-functionally to ensure security requirements are addressed throughout the mission system development lifecycle.
- Perform security compliance scans, vulnerability analysis, and drive identified issues resolution.
- Performs periodic vulnerability scans of networks to identify security vulnerabilities and provides remediation alternatives and conducts security risk assessments to ensure compliance with corporate security policies and adherence to best practices.
- Develop and maintain ATO Body of Evidence artifacts.
- Work is 100% on-site and CANNOT be accomplished remotely.
- Active DoD Secret Clearance with ability to obtain Top-Secret Clearance.
Qualifications:
- Bachelor’s degree in engineering (Cybersecurity, Computer Science, Electrical, Mechanical, Systems, Software, Physics, etc.) and minimum 6 years of prior related experience.
- Graduate Degree and a minimum of 4 years of prior relevant experience.
- In lieu of a degree, a minimum of 10 years of prior related experience.
- Experience in design, development, and fielding of Systems Security Engineering (SSE) systems.
- Experience translating NIST 800-53 security controls into functional requirements that product teams can implement.
- Experience in drafting Systems Security Engineering Requirements and effectively communicating these requirements with other groups.
- Experience with the Risk Management Framework (RMF) process to include NIST and DoD standards.
- Experience with drafting security documents for various security certifications.
Preferred Additional Skills:
- Proposal Development.
- Demonstrated understanding of networking.
- Experience or proficiency with Linux administration, Bash scripting, Python, Windows PowerShell, Windows administration, Nessus, Wireshark, Nmap, Elastic Stack (Elasticsearch, Logstash and Kibana (ELK)).
- Demonstrated understanding of Linux audit and logging system architecture.
- Demonstrated understanding of directory services - Active Directory and LDAP.
- Demonstrated understanding computer networking and familiarity with NIST publications.
- Experience in application hardening through code scanning (with tools like Coverity/Fortify) and mitigating findings.
- Top Secret/SCI clearance or DOD Top Secret with current SSBI within the last 5 years.
- Experience with eMass and/or Xacta.
- Knowledge of deployment logistics for DoD systems, including transport, setup, and integration in austere or contested environments.
- Familiarity with DoD acquisition processes and exercise planning frameworks.
- Experience with network configuration, data links (e.g., Link 16), or edge computing in operational settings.
#LI-AM2
Nearest Major Market: Dallas
Nearest Secondary Market: Fort Worth