Job Description

POSITION DESCRIPTION:

"Security Engineer (ISSE) to join our team in support of the U.S. Air Force North American Aerospace Defense Command (NORAD) Cheyenne Mountain Complex Integrated Tactical Warning/Attack Assessment (NCMC-ITW/AA) Sustained Support Contract (NISSC).  NISSC will provide accurate, timely, and unambiguous warning and attack assessment of Air, Missile, and Space threats with daily visibility of National Command Authority leaders including the President of the United States.

NCMC-ITW/AA is composed of Air, Missile, and Space Warning Missions located at Cheyenne Mountain AFS, Peterson AFB, Offutt AFB, Vandenberg AFB, and forward user and sensor sites worldwide.  This position is for an Information Systems Security Engineer (ISSE) to perform systems security engineering in support of new systems fielding’s and upgrades to legacy space and ITW/AA programs.

POSITION RESPONSIBILITIES:

•             Analysis of cyber requirements and potential design solutions, providing guidance and direction related to security technologies, performing analysis on cybersecurity collected data and test results, identifying and validating cybersecurity design, and preparing and maintaining engineering and security related documentation.

•             Performing and providing vulnerability assessment results and recommendations to the NISSC Program Engineer, Program Protection Lead and/or Systems Security and Accreditation section as necessary

•             Assessing known systems vulnerabilities and verifying system hardening and patching activities to ensure compliance with the most current applicable Security Technical Implementation Guides (STIGs)/Security Requirements Guides (SRGs) and related checklists

•             Document, implement and prioritize patching requirements across the organizational enterprise

•             Assess scripts used to automate the system installation of required patches and configurations to remediate identified system vulnerabilities

•             Assist in the development and testing of patches to fix vulnerabilities in Windows, RHEL and Solaris operating systems and associated applications

•             Conduct cybersecurity audits to ensure appropriate implementation and compliance of the security posture

•             Performing systems security engineering and test efforts associated with implementation of security controls on networking devices, databases, operating systems, hardware and software components

•             Developing vulnerability reports and investigating impact, resolution and verification of security vulnerabilities and patches as well as performing deep dive and impact analysis into failed patch deployments

•             Provide regular reporting on patch management program and overall operation status of patch compliance

•             Ability to support periodic travel (less than 5%)"

Qualifications

Years of Experience:9 years. Clearance: Secret

Education: 9 years with a BS in Science, Technology, Engineering or Mathematics or related technical degree; 7 years with a MS in Science, Technology, Engineering or Mathematics or related technical degree

Knowledge of the following is a plus:

o             MWare systems administration and installing and configuring VMware

o             CISCO and Juniper firewall installation, configuration and administration

•             Knowledge of XML

•             Experience implementing DoD and Federal IA Certification and Accreditation Processes, assessing and validating compliance with IA controls and developing and maintaining associated certification and accreditation documentation

•             Experience working U.S. Government contract proposals as an Information Assurance/ Information Security Engineering subject matter expert

•             Previous experience with design/implementation of Cloud-based solutions (Gov Cloud, AWS, Azure, etc.) and familiarization with application of FEDRAMP Common Control Criteria highly desired

•             Previous experience with the creation of vulnerability testing processes and security breach mitigation tactics

•             Previous experience/familiarity with TDM and TCP/IP network protocols, application layer protocols (e.g., HTTP, SMTP, DNS, etc.), and tactics, techniques and procedures for application and parsing of network protocols

•             Previous experience with the design/implementation, review and assessment of firewall, intrusion detection/intrusion prevention, SIEM, VPN, SSL, application controls, Antivirus, and other network component policies

Additional Information

 All your information will be kept confidential according to EEO guidelines.