Information Systems Security Engineer – Isse

Information Systems Security Engineer – Isse

Requirements

• Bachelor’s Degree with 5 years of experience managing and implementing security program requirements in a classified R&D environment, or an advanced degree with 3 years of experience working in Industrial Security, Information Assurance/Cyber, Special Programs, military or government information security programs an additional 5 years of related experience in lieu of degree
• Active and transferable Secret U.S. government security clearance is required prior to start date
• Certifications equivalent to or exceeding DoD 8570.01-M IAT Level II functional and baseline certification requirements
• U.S. citizenship is required, as only U.S. citizens are authorized to access information under this program/contract
• Ability to obtain access to Special Access Programs
• Must have Top Secret clearance and the ability to obtain a TS/SCI CI Poly Clearance
• Ability to do minimal travel to other RTX BBN sites as need

Responsibilities

• Function as a Subject Matter Expert (SME) for information systems security control methods, mitigations, and tools throughout a systems’ lifecycle in compliance with U.S. Department of Defense (DoD) security laws, regulations and guidelines
• Participate in projects, guide and counsel internal customers, assist in developing and maintaining cross-security enclave processes and standards, and provide training and guidance on tools and methods to other members of the cybersecurity team
• Under the direction of the Information Systems Security Manager, serve as the information systems security lead for IT projects supporting the DOD, SAP’s and Intelligence Community (IC) portfolio, ensuring that RMF artifact elements for new systems are compiled and submitted for ATO, while reviewing policies, plans, procedures, and configurations in compliance with DoD policies and RMF regulations
• Influence and guide team project teams architecting and designing information systems solutions in the employment of configuration options, processes and tools that align with applicable DoD policies and regulations
• Collaborate with system engineers, developers, and system administrators to resolve compliance issues through mitigation and remediation plans
• Develop, assess, verify, and manage the implementation of information system security-related tools, measures, and controls in compliance with applicable DOD, SAP’s and Intelligence Community (IC) and corporate policies, standards, and procedures
• Periodically review existing systems for opportunities to reduce effort, risk and/or mistake-proof methods and procedures through process improvement
• Architects automated technical solutions to enhance internal Continuous Monitoring strategies and improve process workflows
• Assist in overseeing and managing the patch management process and execution across all RTX BBN security programs
• Collaborate with peer ISSMs/ISSOs and Corporate equivalents for alignment and sharing of best practices

Preferred Qualifications

• Expert-level experience administering and maintaining Splunk Enterprise deployments across enterprise networks; including experience developing custom ingestion pipelines, data visualizations, and leveraging scripts to create custom data inputs
• Experience performing network traffic analysis using tools like Wireshark to understand communication flows and identify vulnerabilities
• Strong history of architecting technical solutions to enhance the overall security posture of an organization
• Experience leveraging vulnerability scanning solutions like Tenable/Nessus, ACAS to identify and remediate information system vulnerabilities
• Ability to develop, document and interpret network and wiring diagrams; system, subsystem and device security architectures down to the board level; and data flow diagrams
• Experience working with virtualization software and virtualized environments such as ESXi, VMWare, VirtualBox, and Hyper-V
• CompTIA (Sec+, CySA+, CISSP)