Chantilly, Virginia, USA
4 days ago
Information System Security Engineer
Overview Arcfield was purpose-built to protect the nation and its allies through innovations in digital transformation, space mission engineering and launch assurance, miniaturized sensors and satellites, advanced modeling and simulation, cybersecurity, and conventional and hypersonic missile support. Headquartered in Chantilly, VA with 16 global offices, Arcfield employs more than 1,500 engineers, analysts, IT specialists, and other professionals with more than 60 years of collective proven experience supporting missions in cyber and space defense, space exploration, hypersonic and nuclear deterrence and warfighter readiness. Visit arcfield.com for more details. Responsibilities Considered an emerging authority, who applies extensive technical expertise, as an Information System Security Engineer (ISSE) you will provide support services to advanced customer mission systems throughout the full systems lifecycle. will play a pivotal role in Information System Security Engineering spanning all six steps of the Risk Management Framework (RMF). This position includes coordinating with multiple groups for timely asset registration and categorization through issuance of an Authorization to Operate (ATO) with Plan of Actions and Milestones (POA&Ms) and Continuous Monitoring. Daily Tasks include, but are not limited to: Assist in defining system security requirements in coordination with security stakeholders including system engineers, program managers, security control assessors, and authorizing officials. Provide independent cybersecurity, and Risk Management Framework (RMF) advice and guidance to government stakeholders. Utilize SNOW for security processing and assessment compliance. Apply knowledge of system networking, use of security technical implementation guides (STIGs), security impact assessments, and vulnerability assessments. Identify additional security requirements, based on Risk management Framework (RMF) or as the result of security issues that put the customer’s systems at risk. Review and analyze new systems (hardware and software) and provides recommendations concerning their security. Develop or review system security designs and architectures. Support testing of systems during development, reaccreditation, and provide evaluation to program stakeholders. Review results from system security scans and advise system engineers on best methods to remediate findings. Support engineering analysis of alternatives, tradeoffs, and risk treatment decisions. Develop and/or review cybersecurity documentation in support of customer Risk Management Framework (RMF) process; in accordance with NIST SP 800-37 Rev 5. Work with interdisciplinary teams to deliver trustworthy and secure systems. Assist customers in achieving and maintaining compliance under system authorization decisions. Qualifications Required Qualifications: BS 8-10, MS 6-8, PhD 3-5 Information Systems Engineering or STEM and 6+ years in fielding technical systems or relevant experience. Must possess an active/current TS/SCI clearance with Poly. (ISC)2 Certified Information System Security Professional (CISSP) or CompTIA Advanced Security Practitioner (CASP) certification. 6+ years of ISSE experience. Knowledgeable of customer’s infrastructure. Familiarity with customer’s IA processes. Demonstrated ability to interact with organizational IT staff and senior government staff. Experience with Intelligence Community Directive 503 (ICD 503) Assessment and Authorization (A&A) activities and the RMF process. Experience with ServiceNow (SNOW) for RMF compliance, reporting and continuous monitoring. Experience with development of dashboards to status where assets are in the RMF process. Experience with delivering capabilities into operations and sustainment. Excellent communications skills – Verbal and Non-Verbal. Demonstrated knowledge and experience in the NIST RMF. Demonstrated expertise and experience in cybersecurity principles. Experience with IA vulnerability testing and related network and system test tools (i.e. HBSS, EVSS, etc.). Proficiency in leveraging MS Office (Excel, Word, and PowerPoint) to create appropriate content and job aids. Desired Qualifications: Experience working in a DoD and IC operational environment. Experience coordinating across DoD/IC agency boundaries. Experience ensuring CDRLs meet IA standards and regulations. Strong negotiation skills to develop coalition solutions. Self-starter requiring limited direction and supervision. Experience briefing senior customer personnel. Experience with IA vulnerability testing and related network and system test tools (i.e. HBSS, EVSS, etc.). EEO Statement EEO Arcfield proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active-Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.
Confirm your E-mail: Send Email