Title:  Lead, Information Security Systems Engineer 1

Job Title:  Lead, Information Security Systems Engineer

Job Code:  30276

Job Location:  Melbourne, FL

Job Schedule: 9/80

Job Description:  

Duties for successful candidates include, but are not limited to management of a team responsible for reviewing and developing information system accreditation/certification support documentation; interacting with customers when changes occur that may affect the information system accreditation/certification; performing system maintenance, audits, and self-inspections; identifying information system vulnerabilities and implementing countermeasures, policy creation/update and maintaining information system security records.

• This is an on-site position at L3Harris offices located in Melbourne, Florida.
• This position may require weekend, after hours support, and on-call rotations to mee program requirements.
• This position is contingent upon contract award.

Essential Functions: 

• Lead and manage the Audit, Risk, and Compliance team
• Support Assessment and Authorization (A&A) activities, internal/external audits, risk evaluation/management, and Plan of Action and Milestones (POAMs)
• Ensure compliance with federal information security guidelines and policies
• Create, review, and maintain documentation such as System Security Plans (SSPs), System Characterization Documentation (SCD), and Contingency Test Plans
• Lead the enforcement of security protocols, compliance, and audit methodologies following NIST-800 series publications, Federal Information Processing Standards (FIPS), RMF, and FISMA policies
• Provide leadership for Information Systems Security Officers (ISSO’s) in designing, implementing, and maintaining security policies and strategies
• Interpret audit, compliance, and vulnerability reports from various tools and sources
• Provide input on risk areas and vulnerabilities to improve network security posture
• Collaborate with government customers and program stakeholders to define and implement security requirements, ensuring they are maintained throughout the system lifecycle
• Develop Information System Security (ISS) RMF documentation to support the A&A of assigned systems
• Analyze and administer security controls for information systems as part of their Continuous Monitoring Plan
• Contribute to product and security engineering activities, including compliance with security controls, design review milestones, and security test/verification 

Qualifications: 

• A Bachelor’s degree in Computer Engineering, Computer Science, IT Security, or a related field with at least 9 years of relevant experience; or a Graduate degree in the same fields and a minimum of 6 years of relevant experience. In lieu of a degree, a minimum of 14 years of prior relevant experience
• Minimum of 2 years of experience in writing and managing RMF documentation (e.g. SSP, SCTM, RAR, POA&Ms, etc.) 
• Deep understanding of information technology and security protocols 
• Minimum 2 years of experience with audit methodologies and compliance standards 
• Proven track record of leading teams in an information security capacity 
• At least 4 years of experience in Security Operations and Vulnerability Management 
• Attention to detail and strong team collaboration skills 
• Ability to understand security assessment reports (SARs) and contract program requirements 
• Minimum of CompTIA CySA+ certification 

Preferred Additional Skills: 

• Active CISSP, CISA, CRISC, or CAP certifications are highly preferred 
• Experience with architecture integrating VLANs, VRF, virtual switching, multi-layer switching, Multi-layer Firewalls, ACLs, secure configuration, VPN (IPSEC) 
• Understanding of routing and switching in telecommunications and network traffic 
• General knowledge of common threats to information systems 
• Experience with application of STIGs, CIS Benchmarks, and/or SCAP and developing associated POAMs 
• Strong analytical and problem-solving abilities 
• Excellent communication and leadership skills 
• Ability to work effectively with federal government customers 
• A self-starter who collaborates well with others to achieve team goals