logo

View all jobs

System Engineer 2

Annapolis Junction, MD · Information Technology
REQUIRED SKILLS/ABILITIES:
  • TO BE CONSIDERED FOR THIS POSITION YOU MUST HAVE AN ACTIVE TS/SCI W/ FULL SCOPE POLYGRAPH SECURITY CLEARANCE (U.S. CITIZENSHIP REQUIRED) 

System Engineer will research, develop, implement, test and review an organization’s information security in order to protect information and prevent unauthorized access. Inform users about current and new security measures and potential threats. Works individually or as part of a team. Reviews and tests system components for adherence to the security control requirements. Analyze system security reports and directs remediation efforts. Resolves system and personnel security issues. Provides continuous monitoring of the security posture of multiple systems. Analyze risks and provide appropriate security solutions. Ensure users have the appropriate authorization and access to perform their duties. Interface with multiple organizations to maintain compliance with policies.
The ideal candidate for the will fit the following:

Significant tactical payload radio frequency systems engineering experience specifically in the areas of GOTS/COTS tactical SIGINT payloads and/or capabilities; tactical SIGINT collection sensor development, integration, testing, certification, deployment, and training.
 

  • Program, portfolio, or project execution experience with Cost, Schedule, and Performance of projects.

  • Working knowledge and understanding of tactical SIGINT development and operations organizations


Position Requirements:

  • Analyze user and system requirements to derive security control requirements

  • Obtain and maintain system Authorization To Operate (ATO)

  • Write and maintain system authorization documents within the system of record

  • Provide system security status updates to stakeholders

  • Analyze vulnerability and compliance scan results and direct mediation actions

  • Review system accounts for applicability on a periodic basis

  • Report computer security incidents

 
Experience Requirements

  • Experience with Nessus and Xacta.

  • Familiar with Splunk or ELK.

 
Desired Capabilities

  • Contribute to the development of sections of systems security documentation such as System Security Plans, Controls Implementation, System Diagrams, and Standard Operating Procedures

  • Provides assistance for proposing, implementing, and enforcing information systems security policies, standards, and methodologies

  • Coordinate the resolution of action items from Configuration Control Board (CCB) meetings, design reviews, program reviews, and test reviews that require cross-discipline coordination

  • Provides daily oversight and directions to system engineers and system administrators

  • Manage documentation in the various record systems, i.e. Xacta, LatteArt, Rockblaster

  • Provide PMO interface to Assessment & Authorization organizations

  • Participate in supporting system security controls self-testing

  • Develop derived requirements for Information Assurance Services (Confidentiality, Integrity, Non repudiation, and Availability); Basic Information Assurance Mechanisms (e.g., Identification, Authentication, Access Control, Accountability); and Security Mechanism Technology (Passwords, cryptography, discretionary access control, mandatory access control, hashing, key management, etc.)

  • Review and/or approve system engineering documentation to ensure that processes and specifications meet system security needs and are accurate, comprehensive, and complete

  • Conduct/Analyze vulnerability and compliance scans using tools such as Nessus

  • Review system and application logs for anomalies

  • Complete security impact analysis for system changes

  • Assess each risk to the program and determine the probability of occurrence and quantified consequence of failure in accordance with an approved risk management plan

  • In conjunction with system stakeholders, plan the verification efforts of new and unproven designs early in the development life cycle to ensure compliance with established requirements

 
 

 

Powered by