Title:  Lead, Info Security Systems Engineer

Job Title:  High Assurance Device Certification Engineer (Secret Security Clearance)

Job Code:  24471

Job Location:  Palm Bay, FL

Job Schedule: 9/80

Job Description:

• Certification of Cryptographic High Assurance Devices.
• Experience with High Assurance products and IASRD and SERD requirements.
• Experience in configuration and use of cyber defense and vulnerability assessment tools such as ACAS and SCC.
• Assess security and privacy controls in embedded systems using NIST 800-53.
• Utilize Risk Management Framework (RMF) accreditation and authorization (A&A) processes, including RMF steps 1-4 (categorization, controls selection, control implementation, security assessment) and standard body of evidence (BoE) package development.
• A&A package processing.
• RMF accreditation of Platform IT (PIT) systems.
• Collaborate with customers, internal program teams, and leadership to address needs.
• Provide DoD software selection and approval processes for COTS, GOTS, and FOSS.
• Support security engineering activities, including basis of estimate development, requirements development, design, testing, configuration management, and maintenance of information systems and data.
• Assist program security in the development of policies and procedures for emerging security technologies.
• Support the evaluation, qualification, testing, and delivery of security architecture improvements, obsolescence replacements, and vulnerability response projects.

Qualifications:

• Bachelor’s Degree and a minimum of 9 years of prior relevant experience. Graduate Degree and a minimum of 7 years of prior related experience. In lieu of a degree, minimum of 13 years of prior related experience.
• Minimum of Collateral Secret security clearance required.

• Must be able to obtain and maintain a DOD 8140 certification (or NIST 800-181), appropriate for the position within 6-months of start 

• Prior or current experience with developing and High Assurance Device certification on embedded systems
• Prior or current experience with Risk Management Framework A&A on embedded systems.

Preferred Additional Skills:

• Lead the development and implementation of Anti-Tamper (AT) measures throughout the System Development Lifecycle.
• Serve as a Subject Matter Expert (SME) in the area of AT.
• Assess systems for Critical Program Information (CPI).
• Conduct trade studies and develop AT requirements.
• Assess threats via attack/countermeasure analysis.
• Conduct Verification and Validation activities.
• Use DoD 5200.39 for the identification and protection of CPI.
• Engineer trustworthy and secure systems in accordance with NIST 800-160.
• Develop and implement comprehensive Program Protection Plans (PPP) to safeguard critical program information (CPI) and technologies.
• Draft Program Protection Plans (PPPs), Cybersecurity Strategies, Security Classification Guides (SCGs), and AT Plans.
• Interact with customers to define AT requirements, solutions, trades, costs, implementation, system impacts, and effectiveness.
• Ability to obtain Top Secret clearance preferred, active TS/SCI Clearance is highly desired.