Description:
Job Title: Specialist, Systems Engineer (Cybersecurity)
Job Code: IMS20221512-94829
Job Location: Goleta, CA
Job Description:
Define the cybersecurity requirements for the program and perform appropriate tasks to ensure the product/program will meet the defined cyber security requirements.
Please be aware this position requires the ability to obtain a security clearance. Security clearances may only be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment may be subject to government security investigation(s) and must meet eligibility requirements for access to classified information.
Essential Functions:
- Knowledge of the Risk Management Framework process, including: System Categorization, Controls Selection (including selection and application of appropriate overlays), Risk Assessment, Implementation of Controls, Security Assessment, support to System Authorization, and development of Continuous Monitoring plans.
- Applying cybersecurity experience throughout the System Development Life Cycle process to develop systems and equipment that obtain Interim Authority To Test (IATT) and Authority to Operate (ATO) on time, within the allotted budget, and with low residual risk.
- Communicates with program leadership regarding matters of importance to the program.
- Function a point of contact resource for technical issues related to assigned program and resolves issues with guidance on resolution.
- Be a strong leader in support of doing what is right and working issues cross-functionally by elevation or collaborative, cross-functional teamwork.
- Perform work in accordance with established Engineering regulatory requirements (JSIG, NIST 800 series, and DOD Manuals volume 1-4, etc.)
- Contribute to the development of the Body of Evidence required in support of the IATT and ATO.
- Ensure quality through adherence to the Quality Systems Manual, applicable Standard Work Instructions, and other standards invoked internally or contractually.
- Works with Engineering to develop device and system hardening guides following DISA and NIST guidelines.
- Identifying system security controls shortcomings and developing POA&Ms.
- Provide feedback to the design team related to tradeoffs and issues regarding cybersecurity.
- Works with team members to identify and mitigate risks to successful product integration
- Must have attention to detail
- Perform other duties as assigned.
- Willingness to travel up to 10% of time.
- Ability to interact with other engineers company-wide to provide valuable cybersecurity input for design engineers
Qualifications: (refer to Career Framework)
- 3 - 6 years of experience with Bachelor’s Degree or relevant technical education / background
- 3+ years of experience in the development and accreditation of Risk Management Framework-impacted systems or equipment that led to successful attainment of an Authorization to Operate (ATO).
- US Government Secret security clearance or ability to obtain clearance required
Preferred Additional Skills:
- Outstanding work ethic and commitment to organizational success
- Flexibility to adjust to changing requirements, schedules, and priorities.
- Experience with networking concepts (i.e. sub-netting, protocols, WAN connectivity, virtual networks)
- Clear & concise communication style – ability to communicate requirements / solutions to design engineers – Both verbal, written and presentation.
- Proficiency with Microsoft Office products: (Microsoft Word, Excel, PowerPoint, Teams, Visio, Outlook E-mail)
- Experience with Linux is a plus.
- Excellent people skills, with experience collaborating in a multi-disciplinary, diverse, and dynamic team environment.
- Knowledge of the Risk Management Framework (RMF)
- Active US Government SECRET Security Clearance highly desirable.