TWO Information Systems Security Engineer (ISSE) - CYBER SECURITY - in Marlborough, MA

Position: TWO Information Systems Security Engineer (ISSE) - CYBER SECURITY - in Marlborough, MA

Location: Marlborough, MA (or Andover, Woburn, Tewksbury)

Duration: Full-Time Permanent position (no contracts, no corp to corp, no remote)     

Security Clearance: Needs ACTIVE Security Clearance

SKILLS: Certified Security+, CISSP, anti-virus, Vulnerability Assessment, HIDS/ NIDS, endpoint security solutions, Multi Factor Authentication (MFA), Security Incident and Event Management (SIEM)

DESCRIPTION:

For one of our prestigious clients, we are currently seeking a  CSI  Information Systems Security Engineer (ISSE) to function as a key contributor for the Systems Design team in the Massachusetts area (i.e. Marlborough, Woburn, Tewksbury, etc).

The  Systems Design Directorate is the central focus for Mission Systems Integration activities within Company. Company created Cyber Solutions and Integration (CSI) to expand growth opportunities with a focus on system Anti-Tamper (AT) and Cyber Security architecture, requirements, design and implementation, as well as Cyber resiliency, threat awareness, and integration of Enterprise Cyber capabilities into Company franchise solutions.

Key Responsibilities:

-Establish and manage a program vision.

-Lead engineering execution across all IPTs, CPTs, and disciplines within the Program.

-Primary Cyber Solutions POC with the customer senior counterparts.

-Responsibility to manage all program engineering related activities related to the development of the exportable version of the system.  Authority over and direct management of the program leads to ensure that products are delivered on time, on budget and meet system requirements. 

-Support the development of cybersecurity requirements, design and architecture artifacts, plans, and policies.

-Defining security development and test efforts implementation of security controls of networking devices, databases, operating systems, and hardware and software components

-Understanding and integrating cybersecurity development activities.

-Support the development of RMF documents and controls validation testing for Authority to Operate (ATO) accreditations.

-Performing analysis on cybersecurity collected data and test results.

-Conducting cybersecurity audits to ensure appropriate implementation and compliance of the security posture.

-Conducting technical and nontechnical trade studies.

-Collaborating with program and engineering disciplines and ensuring the cybersecurity solution alternatives.

-Understanding and compliance with DoD technology release and export licensing policies.

 Required Experience/Skills:

-Minimum of 10+ years of Technical (hands-on) experience related to Information Assurance/Cyber Engineering requirements, determination, development, and implementation.

-Experience in the field of Systems Engineering, including any of the following: System Requirements definition and analysis, System Test and Analysis, and Systems Engineering Studies.

-Experience in security systems engineering involving various computer hardware and software S/W operating system and application solutions in both a stand-alone and in LAN/WAN configurations.

-Experience with security features and/or vulnerability analysis of various operating systems as defined by NSA, NIST, DISA (STIGs) and USCYBERCOM.

-Experience with IA vulnerability testing and related network and system test tools; e.g., Retina, NMap, Nessus, Security Content Automation Protocol (SCAP).

-Experience with information security toolset including: anti-virus, Vulnerability Assessment, HIDS/ NIDS, host-based or endpoint security solutions, Multi Factor Authentication (MFA), and Security Incident and Event Management (SIEM) and centralized auditing tools.

-DoDI 8570.01-M IAT Level-II Compliant Certification (e.g. Security+ or CISSP or equivalent).

-Experience leading and growing a team of engineers.

-Collaborating with program and engineering disciplines and ensuring cybersecurity solution alternatives.

Required Education:

-Bachelor’s Degree in STEM (Science, Technology, Engineering, and Mathematics); advanced degree(s) Business or related discipline

Desired Experience/Skills: 

-Experience with IT and/or network and system security administration, including operating system security configuration and account management best practices for UNIX, MS Windows, Red Hat Enterprise Linux, and CISCO systems. 

-Understanding of Systems Engineering requirements, specifications, and Experience implementing DoD and Federal IA Certification and Accreditation Processes, IA controls and developing and maintaining associated certification and accreditation documentation.

-Ability to organize, multi-task and prioritize tasks in a fast paced, deadline driven environment.

-Familiar with NIST Risk Management Framework (RMF) as described in NIST Special Publication 800-37

-Familiar with Program Protection Plan (PPP) required by DoDI 5000.02 and DoDI 5200.39

-Security related Network (e.g., Cisco) and Operating Systems (e.g., Linux, Windows, Solaris) certification or training

-Demonstrated strong communication and technical presentation skills

-Knowledge of Agile / DevOps techniques.

-Experience with multi-level security.

-Knowledge of DoD Exportability/Releasability Requirements.

-Experience working U.S. Government contract proposals as an Information Assurance Engineer subject matter expert.

-Self-starter requiring limited direction and supervision.

What We Offer: 

Whether you are just starting out on your career journey or are an experienced professional, Company offers a robust total rewards package that goes beyond with compensation; healthcare, wellness, retirement and work/life benefits; career development and recognition programs. Some of the superior benefits Company offers include parental (including paternal) leave, flexible work schedules, achievement awards, educational assistance and child/adult backup care. 

======================================