SonicJobs Logo
Left arrow iconBack to search

Lead, Information Security Systems Engineering

L3HHCM20
Posted 11 days ago, valid for 19 days
Location

Springfield, VA 22153, US

Salary

$110,500 - $236,500 per year

Contract type

Full Time

Health Insurance
Paid Time Off
Disability Insurance
Employee Assistance
Flexible Spending Account

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Sonic Summary

info
  • The Lead, Information Security Systems Engineering (ISSE) position is located in Chantilly, VA and requires a minimum of 9 years of relevant experience or a graduate degree with at least 6 years of experience.
  • The role involves defining, designing, implementing, and sustaining security solutions for National Security Systems while adhering to NIST standards and frameworks.
  • Candidates must hold an active TS/SCI clearance and be willing to undergo a CI Polygraph, with a DoD 8140.03 IASAE Level 2 certification preferred.
  • The salary range for this position is between $127,500 - $236,500 in certain high-cost areas and $110,500 - $205,500 in other specified states.
  • This role is performed 100% onsite, with up to 25% travel possible.

Job Title: Lead, Information Security Systems Engineering (ISSE)

Job Code:  40400

Job Location: Chantilly, VA

Job Schedule: 5/8 Monday - Friday

Job Description:

The successful candidate will support a highly motivated engineering team in defining, designing, implementing, documenting, testing and sustaining security solutions on National Security Systems, or other systems engineered for our government customers, using current standards within National Institute of Standards & Technology (NIST) Risk Management Framework, Special Publications 800-37, 800-53, 800-171, and other NIST publications; Committee on National Security Systems Instruction (CNNSI) 1253, Joint SAP Implementation Guide (JSIG), and Federal Information Processing Standards (FIPS) to certify and achieve system accreditations.

The successful candidate will work with system developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database products, using methods such as encryption technology, vulnerability analysis and security management.

Essential Functions:

  • Exercise skills in NIST Risk Management Framework (RMF) and all related NIST publications, to include writing System Security Plans, Security Control Traceability Matrix, Continuous Monitoring Plan, Security Assessment Plans & Procedures, Security Concept of Operations, Plan of Action and Milestones.
  • Perform skills in implementing/assessing security controls, to include writing system security categorization memorandum, recommending appropriate security control overlays, define security control baseline based on defined system security categorization and approved security overlays, and apply security controls to computing/network nodes and verify implementation of security controls.
  • Assist in systems/software engineering functions, to include creation of data flow diagrams, interface control documents, perform trade studies, and Static Application Security Testing (SAST) for Application Security and Development Secure Technical Implementation Guide (STIG) compliance using tools such as Fortify/Coverity and Gitlab as part of a DevSecOps Continuous Integration/Continuous Deployment (CI/CD) Pipeline, and generation of summary reports.
  • Define/manage systems/security architectures including cyber survivability attributes (including zero trust architecture), system security boundaries, vulnerability management and risk mitigation and remediation strategies within networks, systems, applications and new technology initiatives (hardware, software, firewalls, intrusion detection systems, anti-virus systems and software deployment tools); and Infrastructure/Platform/Software-as-a-Service (IaaS/PaaS/Saas)  implementations in cloud environments.
  • This position is performed 100% onsite and cannot be performed remotely.
  • Up to 25% travel is possible

Qualifications:    

  • Education
    • Bachelor’s Degree and minimum 9 years of prior relevant experience.
    • Graduate Degree and a minimum of 6 years of prior related experience.
    • In lieu of a degree, minimum of 12 years of prior related experience.
  • Must have active TS/SCI clearance and willing to undergo a CI Polygraph. Active TS/SCI with poly is highly desired.
  • DoD 8140.03 IASAE Level 2 certification.

Preferred Additional Skills:

  • Perform Model Based System Engineering (UML, SysML, UAF).
  • Confugure/operate vulnerability analysis tools such Tenable NESSUS Security products.
  • Develop dashboards, configure rules and operate/administer SEIM/audit reduction tools (e.g., Splunk).

In compliance with pay transparency requirements, the salary range for this role in California, Massachusetts, New Jersey, Washington, and the Greater D.C, Denver, or NYC areas is $127,500 - $236,500. The salary range for this role in Colorado state, Hawaii, Illinois, Maryland, Minnesota, New York state, Cleveland Ohio, and Vermont is $110,500 - $205,500. This is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. L3Harris also offers a variety of benefits, including health and disability insurance, 401(k) match, flexible spending accounts, EAP, education assistance, parental leave, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, schedule type, and the applicability of collective bargaining agreements.  

 




Learn more about this Employer on their Career Site

Apply now in a few quick clicks

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.