Title:  Manager, Information Security Systems Engineering

Job Title: Manager (Level 5), Information Security Systems Engineering

Job Code: 37530

Job Location: Waco, TX (on site)

Schedule: 9/80; Every other Friday off

Job Description:

The L3Harris Waco Systems Engineering team is looking for an experienced Manager & individual contributor hybrid role within our team for Information Security (Cybersecurity). The position is a manager role with Information Security direct reports that they manage as a frontline people-leader and will also directly execute on programs, write proposals, and improve processes as the Information System Security Engineer (ISSE) Subject Matter Expert for systems, software, and networks.

Essential Functions:

• As a manager, interface with internal Customers and other Managers to scope current and future work needs while monitoring and managing direct reports loading levels as work fluctuates.  
• Perform Control Account Manager (CAM) duties on an Earned Value (EV) program by participating in detail planning, monitoring and providing progress status, explaining variances, and ensuring the team delivers first time quality deliverables within budget and schedule.
• Manage 12+ direct report ISSEs with varying experience levels, including team meetings, 1-on-1 meetings, mentoring, and career development.
• Manager tasking to include flow down of information, timecard approvals, expense report approvals, ensuring training is completed, enforcing company policies, and managing HR situations. 
• Provide the ISSE Team with process improvements and process/training documentation.
• As an ISSE SME, candidate must hold a DoD 8570/8140 approved baseline certification and Security+ or equivalent with CISSP.  Well versed in NIST 800-53 standards.
• Ensure delivered information systems meet security standards in accordance with ICD 503, Risk Management Framework (RMF).
• Interact with Customers and accreditation officials to define, execute, and achieve required Cybersecurity objectives.  Work alongside Customers to provide Cyber Security as a Service (CsaaS) support.
• Identify the information protection needs for systems, software, and networks.  Assist Design Engineers in overarching system design with a focus on Cybersecurity.  Support steps one through six of the Risk Management Framework (RMF) Security Life Cycle, ensuring information assurance is included in the design architecture.
• Document security controls/requirements within the System Requirements Specifications. Assist the ISSEs with analysis of User and System requirements and constraints. 
• Work closely with the Software Development Team on Secure Software Development Practices to ensure that developed software vulnerabilities are addressed early in the development process.  Perform Dynamic and Static code analysis with the use of code analysis tools.
• Develop secure/hardened Linux based Operating System (OS).
• Utilize Vulnerability Scanning Tools to scan target networks/applications and identify weaknesses.  Track Software Vulnerability Findings and Software Patches.
• Develop Risk Assessment Reports (RAR), System Security Plans (SSP), Security Control Traceability Matrix (SCTM), et al needed to obtain an Authorization to Operate (ATO) for fielded systems.
• Review ISSE work products for completeness and quality.
• Ability to support travel up to 15% CONUS / OCONUS. 

Qualifications:

• Bachelor’s Degree in STEM and minimum of 9 years of prior related Information Security experience or Graduate Degree in STEM with a minimum of 7 years of prior related Information Security experience.
• Active TS/SCI Government Security Clearance required upon start.

Preferred Additional Skills:

• Experience in the INCOSE Systems Engineering “V” with the ability to oversee work products and coach direct reports through the stages of work including requirements capture, design, purchasing, build, and test. 
• Previous experience analyzing system specifications and translating those to Information Security system requirements.
• Previous accreditation Information Security experience.
• Experience obtaining an authorization for systems on or in support of an aircraft.