L3Harris Technologies - Park City, UT
posted 19 days ago
Full-time - Senior
Park City, UT
Computer and Electronic Product Manufacturing
About the position
The Lead, Information Security Systems Engineering position is a senior role focused on applying advanced systems security engineering methods to ensure the security of systems and networks. This role involves collaborating with government customers and stakeholders to define and implement security requirements throughout the system lifecycle, ensuring compliance with various security standards and frameworks. The Lead will oversee the integration of security measures, conduct risk assessments, and prepare necessary documentation for security authorization, while also providing technical leadership to development teams.
Responsibilities
- Apply systems security engineering methods to architecture, design, development, evaluation, and integration of systems and networks.
- Work with systems developers and vendors to design and evaluate secure systems and networks.
- Integrate multiple security methods into a cohesive security perimeter and environment.
- Prepare Assessment and Authorization documentation using multiple standards under RMF and derivative processes.
- Represent program security needs at customer meetings.
- Lead and contribute to Product or Network Information Security Engineering activities.
- Perform system CONOP analysis and development.
- Conduct functional analysis, timeline analysis, and requirements derivation to translate security requirements into specifications.
- Provide Cyber technical leadership for development teams and at internal and external gate reviews.
- Identify security risks, threats, and vulnerabilities of networks and systems.
- Ensure RMF Information Security requirements are addressed in all phases of the System Development Lifecycle.
- Conduct security architecture analysis to evaluate and mitigate risks.
Requirements
- Bachelor's Degree with a minimum of 9 years of related experience, or a Graduate Degree with a minimum of 7 years of related experience, or 13 years of related experience in lieu of a degree.
- DoD 8570.01-M IASAE Level 3 certification (e.g., CISSP, ISSEP, ISSAP).
- Active Top Secret security clearance.
Nice-to-haves
- Active Top Secret/SCI Security Clearance preferred.
- Minimum of 7 years of experience with vulnerability research and analysis of computer hardware and embedded systems.
- Minimum of 7 years of experience with Risk Management Framework (RMF) accreditation and authorization processes.
- Minimum of 2 years of experience in writing and managing RMF body of evidence documents.
- Minimum of 2 years of experience with system testing and evaluation methods.
- Minimum of 10 years of experience with IC and DoD Cyber organizations.
- Minimum of 5 years of experience with DCO and OCO Cyber Effects Operations.
- Minimum of 5 years of experience leading technical teams across a portfolio.
- Minimum of 5 years of experience with computer hardware architecture and protocols.
- Experience with Modular Open Systems Approach (MOSA) standards.
Benefits
- 9/80 work schedule with every other Friday off.
