Title:  Lead, Cyber Intelligence - TS/SCI

Job Title: Lead, Cyber Intelligence

Job Code: 36474

Job Location: Washington, DC 

Job Schedule: 9/80: Employees work 9 out of every 14 days – totaling 80 hours worked – and have every other Friday off

Job Description:  

The candidate will be able to perform cybersecurity analysis, engineering, and Information System Security Officer (ISSO) duties under the guidance of the Cyber Division’s Information System Security Manager (ISSM). The candidate must have an excellent working knowledge of cybersecurity best practices and experience with cybersecurity operations within Amazon Web Services (AWS). Responsibilities will include authoring and maintaining documentation supporting the management of the system; performing security control assessments as part of the systems’ Continuous Monitoring Plan; overseeing configuration management of assigned systems; working to develop and implement device and system hardening guides following DISA and NIST guidelines; auditing systems to ensure security posture integrity; conducting periodic hardware/software inventory assessments; identifying system security controls shortcomings and developing POA&Ms; remediating control deficiencies; conducting, documenting and reporting annual self-assessments; maintaining operational information security posture for all systems; investigating security incidents such as data spills and malicious events; authoring and delivering security education and training to a range of audiences. This role will also serve as the Washington DC site Facility Security Officer (FSO) with managing secure space on-site as-assigned.

Essential Functions: 

• Perform security control assessments and develop a Continuous Monitoring Plan
• Work with system administration and architecture teams to develop device and system hardening policies and procedures following DISA, NIST, and various industry best practice guidelines
• Maintain system patching compliance along with maintaining hardware and software baselines
• Responsible for leading the deployment of several security tools, including but not limited to IDS/IPS, encryption solutions, endpoint protections, SIEM tools, user behavior analytics, and micro network segmentation
• Working with IT to lay the groundwork for a zero-trust architecture and the integration of cloud and on-prem solutions
• Ensure all systems are comprehensively monitored for anomalous activity and unauthorized exfiltration attempts
• Manage the incident response process for your area of responsibility
• Develop new concepts, standards, and training material which make significant and impactful improvements to processes, systems, solutions, or products
• Lead inventory and asset management discovery and tracking activities
• Author and maintain Assessment & Authorization (A&A) documentation of assigned systems
• Work with security and program leadership to improve the security posture of systems, processes, and general efficiencies
• Manage security protocol, posture, and requirements for Washington DC site, serving as primary contact for physical security (alarm monitoring, badging, and intrusion detection systems)
• Flexibility to adjust to changing requirements, schedules, and priorities

Qualifications:

• Bachelor’s Degree and minimum 9 years of prior relevant experience. Graduate Degree and a minimum of 7 years of prior related experience. In lieu of a degree, minimum of 13 years of prior related experience.

Preferred Additional Skills:

• Willingness to submit to a polygraph if required
• Active Top Secret/SCI security clearance
• Active DoD 8140 certification (e.g. Certified Information System Security Professional (CISSP) or equivalent certification
• 8 years of prior relevant experience to include experience with networking equipment; experience interpreting vulnerability scanning results (e.g. Nessus, Rapid7, etc.); experience reviewing workstation, server, firewall, & IPS logs; experience with SIEM tools
• Experience managing cybersecurity in large wide area networks and in cloud environments
• Experience developing, managing, and providing evidence to close findings associated with the cybersecurity authorization and project management processes
• Experience with workstation and server operating systems, including but not limited to Microsoft and Linux offerings
• Experience managing and/or leading global teams
• Experience managing site and/or physical security requirements in the US

In compliance with pay transparency requirements, the salary range for this role in Washington DC is $127,500 - $236,500. This is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. L3Harris also offers a variety of benefits, including health and disability insurance, 401(k) match, flexible spending accounts, EAP, education assistance, parental leave, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, schedule type, and the applicability of collective bargaining agreements.

#LI-KT1