Title:  Senior Manager, Information Security Systems Engineer

Job Title: Sr. Manager, Information Security Systems Engineer

Job Code: 37198

Job Location: Salt Lake City, UT

Job Schedule: 9/80 (employee's work 9 out of every 14 days - totaling 80 hours worked - and have every other Friday off)

Job Description:

L3Harris is seeking an Information Security Systems Engineering (ISSE) Senior Manager to lead a team in developing and implementing secure systems. This role focuses on ensuring the security of information systems, networks, and data throughout their lifecycle. Key responsibilities include leading security engineering activities, developing and implementing security solutions, and ensuring compliance with relevant standards and regulations.  Works closely with Government customers to ensure that the security protection needs, concerns and requirements are defined and implemented with appropriate fidelity and rigor, early and in a sustainable manner throughout the life cycle of system that results in obtaining an ATO. The Senior Manager, ISSE applies modern systems security engineering principles, practices, and technologies across the full system lifecycle. This leader ensures security is architected, designed, developed, evaluated, integrated, and sustained with the fidelity required to meet customer protection requirements and achieve system security authorization. This role manages experienced security engineering professionals and/or managers. The Senior Manager influences leadership, drives adoption of new practices and technologies, and ensures functional strategies convert into measurable security engineering outcomes.

Essential Functions:

• Apply systems security engineering methods to architecture, development, and integration of systems.
• Ensure customer security needs and requirements are captured early and embedded throughout the lifecycle.
• Design and evaluate secure systems using encryption, vulnerability analysis, and security management.
• Integrate multiple protection mechanisms into cohesive system security environments.
• Prepare Bids and Proposals.
• Lead security authorization and ATO processes.
• Manages an Information Security Systems Engineering team
• Represent program needs in customer meetings.
• Develop staffing and workforce plans.
• Influence leadership on adoption of new security practices.
• Lead innovation, process development, and problem solving.
• Recommend operational plans with 1–2 year impact.
• Communicates within and outside of the organization to influence leadership to accept new practices, approaches, and concepts
•  Track all assigned systems for A&A (Assessment and Authorization) status and oversee accreditation/re-accreditation actions.
•  Responsible for improving existing processes or establishing new processes and systems
•  Work is onsite and cannot be accomplished remotely

 Required Qualifications (one of the following along with required Secret Clearance): 

• Bachelor’s Degree with a minimum of 12 years of prior related experience.
• Graduate Degree with a minimum of 10 years of prior related experience.
• In lieu of a degree, minimum of 16 years of prior related experience.
• Requires an ACTIVE DOD Secret Security clearance with the ability to obtain a TS/SCI CI Poly

Preferred Additional Skills:

• Requires broad leadership knowledge and mastery within technical security engineering domains.
• ISC(2) CISSP certification
• Experience with Xacta or eMASS
• In-depth understanding of ACAS (Assured Compliance Assessment Solution) requirements and best practices for vulnerability management and compliance
• Experience with risk management framework based on NIST 800-53 documentation
• Ability to oversee ATO (Authority to Operate) processes
• Experience developing and managing POA&Ms associated with the A&A and processes

• Experience authoring and updating A&A body of evidence (BOE) documentation and Security Relevant Changes
• Direct experience in review RFP’s and drafting ROMs and bid proposals
• Experience managing > 3-million-dollar budgets.
• Solid understanding of Systems Engineering V model
• Experience or proficiency with Linux administration, Bash scripting, Python, Windows PowerShell, Windows administration, Nessus, Wireshark, Nmap, Elastic Stack (Elasticsearch, Logstash and Kibana (ELK)).
• Excellent understanding of Linux audit and logging system architecture. Good understanding of directory services - Active Directory and LDAP.
• Candidate should understand computer networking and familiarity with NIST publications.
• Experience in application hardening through code scanning (with tools such as Coverity/Fortify) and mitigating findings.
• Certifications - CySA, CASP, CISSP.

#LI-CD1