Sign upLog in

Senior Specialist, Information Security Systems Engineering

L3Harris Technologies

Oakton, VA

Apply
JOB DETAILS
SALARY
$106,500–$196,500 Per Year
SKILLS
Anti-Virus Software, Applications Security, Cloud Computing, Computer Networks, Computer Security, Concept of Operations (CONOPS), Continuous Deployment/Delivery, Continuous Integration, Cryptography, Document Management, Documentation, English Language, Federal Information Processing Standards (FIPS), Firewalls, Government, Incident Response, Information/Data Security (InfoSec), Infrastructure as a Service (IaaS), Internet Security, Intrusion Detection Systems, Malware Analysis, Nessus, Network Operations Center, Network Systems, Operations Planning, Operations Security (OPSEC), Platform as a Service (PaaS), Publications, Reporting Dashboards, Risk Analysis, Risk Management, Risk Management Framework (RMF), SAP, Security Analysis, Security Architecture, Security Attacks, Security Clearance, Security Monitoring, Sensitive Compartmented Information (SCI), Software Development, Software Engineering, Software Testing, Software as a Service (SaaS), Spanish Language, Splunk, Supply Chain Management, Systems Administration/Management, Systems Engineering, Technology Analysis, Testing, Top Secret Clearance, Traceability, Trade Studies, U.S. National Institute of Standards and Technology (NIST), Unified Modeling Language (UML)
LOCATION
Oakton, VA
POSTED
1 day ago
The successful candidate will support a highly motivated engineering team in defining, designing, implementing, documenting, testing and sustaining security solutions on National Security Systems, or other systems engineered for our government customers, using current standards within National Institute of Standards & Technology (NIST) Risk Management Framework, Special Publications 800-37, 800-53, 800-171, and other NIST publications; Committee on National Security Systems Instruction (CNNSI) 1253, Joint SAP Implementation Guide (JSIG), and Federal Information Processing Standards (FIPS) to certify and achieve system accreditations. The successful candidate will work with system developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database products, using methods such as encryption technology, vulnerability analysis and security management. Essential Functions: Perform incident response cyber threat identification, incident response support, defensive cyber operations coordination, malware analysis, supply chain risk management assessments per NIST SP 800-161, vendor provenance, counterfeit detection. Exercise skills in NIST Risk Management Framework (RMF) and all related NIST publications, to include writing System Security Plans, Security Control Traceability Matrix, Continuous Monitoring Plan, Security Assessment Plans & Procedures, Security Concept of Operations, Plan of Action and Milestones. Perform skills in implementing/assessing security controls, to include writing system security categorization memorandum, recommending appropriate security control overlays, define security control baseline based on defined system security categorization and approved security overlays, and apply security controls to computing/network nodes and verify implementation of security controls. Assist in systems/software engineering functions, to include creation of data flow diagrams, interface control documents, perform trade studies, and Static Application Security Testing (SAST) for Application Security and Development Secure Technical Implementation Guide (STIG) compliance using tools such as Fortify/Coverity and Gitlab as part of a DevSecOps Continuous Integration/Continuous Deployment (CI/CD) Pipeline, and generation of summary reports. Define/manage systems/security architectures including system security boundaries, vulnerability management and risk mitigation and remediation strategies within networks, systems, applications and new technology initiatives (hardware, software, firewalls, intrusion detection systems, anti-virus systems and software deployment tools); and Infrastructure/Platform/Software-as-a-Service (IaaS/PaaS/Saas) implementations in cloud environments. Define/manage systems/security architectures including system security boundaries in on-premises data center systems and ultimately deploy to secure cloud-based system, to include configuration and use of defense and assessment tools specific to each environment type. This position is performed 100% onsite and cannot be performed remotely. Qualifications: Education Bachelor’s Degree and minimum 6 years of prior relevant experience. Graduate Degree and a minimum of 4 years of prior related experience. In lieu of a degree, minimum of 10 years of prior related experience. Must have active TS/SCI security clearance. Ability to obtain and maintain Special Access Program (SAP) clearance after hire is required. DoD 8140.03 Level 3 or 4 certification. Preferred Additional Skills: Perform Model Based System Engineering (UML, SysML, UAF). Confugure/operate vulnerability analysis tools such Tenable NESSUS Security products. Develop dashboards, configure rules and operate/administer SEIM/audit reduction tools (e.g., Splunk). In compliance with pay transparency requirements, the salary range for this role in California, Massachusetts, New Jersey, Washington, and the Greater D.C, Denver, or NYC areas is $106,500 - $196,500 . The salary range for this role in Colorado state, Hawaii, Illinois, Maryland, Minnesota, New York state, Cleveland Ohio, and Vermont is $92,500 - $171,500 . This is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. L3Harris also offers a variety of benefits, including health and disability insurance, 401(k) match, flexible spending accounts, EAP, education assistance, parental leave, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, schedule type, and the applicability of collective bargaining agreements. L3Harris Technologies is proud to be an Equal Opportunity Employer. L3Harris is committed to treating all employees and applicants for employment with respect and dignity and maintaining a workplace that is free from unlawful discrimination. All applicants will be considered for employment without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender (including pregnancy, childbirth, breastfeeding or other related medical conditions), gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, characteristic or membership in any other group protected by federal, state or local laws. L3Harris maintains a drug-free workplace and performs pre-employment substance abuse testing and background checks, where permitted by law. Please be aware many of our positions require the ability to obtain a security clearance. Security clearances may only be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment may be subject to government security investigation(s) and must meet eligibility requirements for access to classified information. By submitting your resume for this position, you understand and agree that L3Harris Technologies may share your resume, as well as any other related personal information or documentation you provide, with its subsidiaries and affiliated companies for the purpose of considering you for other available positions. L3Harris Technologies is an E-Verify Employer. Please click here for the E-Verify Poster in English or Spanish . For information regarding your Right To Work, please click here for English or Spanish .5c143e31-5e48-4549-b638-05792d185386

About the Company

L

L3Harris Technologies