Job Title: System Security Engineer
Posted by: Life Cycle Engineering on May 25, 2018
Location:
Washington , DC 20001Job Description:
LIFE CYCLE ENGINEERING
Life Cycle Engineering (LCE) is a privately held, employee owned company with an emphasis on "doing the right thing the right way", which applies to the way we treat our customers and employees. We are proud to have been recognized as a "Best Place to Work" for 12 years running! Learn more below and at www.lce.com.
System Security Engineer
Position Summary:
As System Security Engineer, you will provide system and security engineering support and Risk Management Framework (RMF) accreditation support for USCG C4ISR (Command, Control, Communications, Computers, Intelligence, Surveillance and Reconnaissance). The effort includes hardware and software IV&V, creation/revision/maintenance of RMF A&A Package artifacts and supporting the accreditation process from Step 1 thru Step 6 as needed. This work will be located in Washington, DC.
Contract Requirements: Must be a US citizen with the ability to obtain/maintain a DoD TS/SCI security clearance Must be IAT Level II compliant (CompTIA Security+ or equivalent) Essential Functions and Responsibilities: Provide system engineering and technical assistance support, as requested by USCG stakeholders. Provide on- and off-site system engineering to assist with the acquisition, integration, and certification of C4ISR systems and components under the purview of the C4ISR Program. Provide systems engineering support for (C4ISR) system hardware and software and Independent Verification and Validation (IV&V). Review and comment on program documentation and key processes (e.g. Drawings, Data Item Descriptions, Contract Data Requirements Lists, Concept of Operations, Integrated Support Plan, Software Acquisition, Development and Integration Plan, Software Requirements Specification and asset design drawings/documentation). Assist in the development of a hardware Configuration Management (CM) plan which is consistent and compatible with current USCG hardware CM practices. Provide CM reports as required in support of Integrated Product Teams and the project manager. Assist in the development of a Systems Engineering Risk Management Plan including the stand-up and operation of a Risk Management Board (RMB) that is consistent and compatible with current USCG and USN Risk Management practices where applicable. Provide expertise and assist the USCG in the review of C4ISR system integrated logistics support documentation such as technical manuals, maintenance procedures, spares lists and quick reference guides etc. Develop and maintain a Plan of Action and Milestone (POA&M) for all IA-related tasks and deliverables in accordance with the Security Technical Implementation Guide (STIG) Required Education, Skills, and Experience: At least 5 years' experience auditing/implementing DoD Security Controls (STIGs, NIST, etc.) Experience with Risk Management Framework (RMF) as described in DODI 8510.01 & NIST Special Publication 800-37. Experience in security systems engineering involving various computer hardware and software operating systems and application solutions in both a standalone and in LAN/WAN configurations. Experience with security features and/or vulnerability of various operating systems as defined by NSA, NIST, DISA (STIGS) and USCYBERCOM. Experience with IA vulnerability testing and related and system test tools; e.g. NMap, Nessus, Security Content Automation Protocol (SCAP) Understanding of systems engineering requirements, specifications, and experience implementing DoD and Federal IA Certification and Accreditation Process, IA Security controls and developing and maintaining associated certification and accreditation documentation. Experience in defining cyber requirements and providing guidance and direction related to security technologies. Experience in identifying and implementing cybersecurity design and preparing maintaining engineering and security related documentation. Experience in defining and developing cybersecurity requirements, design and architecture artifacts, strategy, plans, and policies Experience in performing and/or providing guidance on vulnerability assessments; defining, negotiating, and executing Certification and Accreditation Programs. Experience in collaborating with program and engineering disciplines and ensuring the cybersecurity solution alternatives Experience in conducting cyber security audits to ensure appropriate implementation and compliance of the security posture Experience in defining security development and test efforts implementation of security controls of network devices, databases, operating systems, and hardware and software components. Experience in conducting technical and non-technical IA trade studies, analysis and reviews. Experience in documenting and completing RMF artifacts and documenting to support RMF controls. Experience in developing scripts to install & configure registry settings, patches, updates, etc. Experience in performing analysis on cybersecurity collected data and test results Experience with network and system security administration, including operating system security configuration and account management best practices for UNIX (Client-UX & Solaris), MS Windows, Red Hat Enterprise Linux, and CISCO system. Preferred Skills and Experience: Bachelor's degree More than 5 years' experience with DIACAP or RMF Experience with USCG Security Requirements Physical Demands and Expectations: Regular physical activity to include walking, climbing stairs, bending, stooping, reaching, lifting (up to 30 pounds), and standing; occasional prolonged sitting Ability to speak, read, hear and write, with or without assistance Ability to use phone and computer systems, copier, fax and other office equipment This position description represents a summary of the major components and requirements of the outlined job. Other duties and responsibilities may be assigned or required as business needs dictate. Questions regarding this description should immediately be addressed to the department manager or to Human Resources.
Mission
Our mission is to enable people and organizations to achieve their full potential.
As a professional services organization our mission is focused on our clients' people and organizations. It is our company's cornerstone belief that we will not lead the industry in assisting our clients unless we excel at helping our own people and teams reach their full potential.
Culture
Our corporate culture encourages personal and professional growth because LCE's success depends on the talent, professionalism and commitment of its employees. LCE is a strengths-based organization focused on turning individual talents into strengths and then turning individual strengths into organizational performance that supports our clients' success.
Benefits Affordable Medical/Dental/Vision Plans for employees and their families. Free Employee Life and Disability Insurance, with supplemental coverage options available. Health Savings Account and Flexible Benefit Account options Company matched 401K & company funded Employee Stock Ownership Program Paid Vacation, Holidays, & Sick Leave Continuing Education & Professional Development Programs at all levels Flexible Schedules & Relaxed Dress code Employer sponsored events, social collaboration, and open communication Free access to an extensive online training library, including certification prep Bonus Program for outstanding contributions, Employee Referral Program, numerous Recognition Opportunities, and more... *Benefits may vary by business unit & location. http://www.lce.com/Employee_Benefits_358.html
Life Cycle Engineering (LCE) shall abide by the requirements of 41 CFR §§ 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, or national origin. Moreover, these regulations require that LCE take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability. In addition, LCE will not discharge or in any other manner discriminate against any employee or applicant for employment because such employee or applicant has inquired about, discussed, or disclosed the compensation of the employee or applicant or another employee or applicant. LCE shall also abide by the requirements of 29 CFR Part 471, Appendix A.
Life Cycle Engineering (LCE) is a privately held, employee owned company with an emphasis on "doing the right thing the right way", which applies to the way we treat our customers and employees. We are proud to have been recognized as a "Best Place to Work" for 12 years running! Learn more below and at www.lce.com.
System Security Engineer
Position Summary:
As System Security Engineer, you will provide system and security engineering support and Risk Management Framework (RMF) accreditation support for USCG C4ISR (Command, Control, Communications, Computers, Intelligence, Surveillance and Reconnaissance). The effort includes hardware and software IV&V, creation/revision/maintenance of RMF A&A Package artifacts and supporting the accreditation process from Step 1 thru Step 6 as needed. This work will be located in Washington, DC.
Contract Requirements: Must be a US citizen with the ability to obtain/maintain a DoD TS/SCI security clearance Must be IAT Level II compliant (CompTIA Security+ or equivalent) Essential Functions and Responsibilities: Provide system engineering and technical assistance support, as requested by USCG stakeholders. Provide on- and off-site system engineering to assist with the acquisition, integration, and certification of C4ISR systems and components under the purview of the C4ISR Program. Provide systems engineering support for (C4ISR) system hardware and software and Independent Verification and Validation (IV&V). Review and comment on program documentation and key processes (e.g. Drawings, Data Item Descriptions, Contract Data Requirements Lists, Concept of Operations, Integrated Support Plan, Software Acquisition, Development and Integration Plan, Software Requirements Specification and asset design drawings/documentation). Assist in the development of a hardware Configuration Management (CM) plan which is consistent and compatible with current USCG hardware CM practices. Provide CM reports as required in support of Integrated Product Teams and the project manager. Assist in the development of a Systems Engineering Risk Management Plan including the stand-up and operation of a Risk Management Board (RMB) that is consistent and compatible with current USCG and USN Risk Management practices where applicable. Provide expertise and assist the USCG in the review of C4ISR system integrated logistics support documentation such as technical manuals, maintenance procedures, spares lists and quick reference guides etc. Develop and maintain a Plan of Action and Milestone (POA&M) for all IA-related tasks and deliverables in accordance with the Security Technical Implementation Guide (STIG) Required Education, Skills, and Experience: At least 5 years' experience auditing/implementing DoD Security Controls (STIGs, NIST, etc.) Experience with Risk Management Framework (RMF) as described in DODI 8510.01 & NIST Special Publication 800-37. Experience in security systems engineering involving various computer hardware and software operating systems and application solutions in both a standalone and in LAN/WAN configurations. Experience with security features and/or vulnerability of various operating systems as defined by NSA, NIST, DISA (STIGS) and USCYBERCOM. Experience with IA vulnerability testing and related and system test tools; e.g. NMap, Nessus, Security Content Automation Protocol (SCAP) Understanding of systems engineering requirements, specifications, and experience implementing DoD and Federal IA Certification and Accreditation Process, IA Security controls and developing and maintaining associated certification and accreditation documentation. Experience in defining cyber requirements and providing guidance and direction related to security technologies. Experience in identifying and implementing cybersecurity design and preparing maintaining engineering and security related documentation. Experience in defining and developing cybersecurity requirements, design and architecture artifacts, strategy, plans, and policies Experience in performing and/or providing guidance on vulnerability assessments; defining, negotiating, and executing Certification and Accreditation Programs. Experience in collaborating with program and engineering disciplines and ensuring the cybersecurity solution alternatives Experience in conducting cyber security audits to ensure appropriate implementation and compliance of the security posture Experience in defining security development and test efforts implementation of security controls of network devices, databases, operating systems, and hardware and software components. Experience in conducting technical and non-technical IA trade studies, analysis and reviews. Experience in documenting and completing RMF artifacts and documenting to support RMF controls. Experience in developing scripts to install & configure registry settings, patches, updates, etc. Experience in performing analysis on cybersecurity collected data and test results Experience with network and system security administration, including operating system security configuration and account management best practices for UNIX (Client-UX & Solaris), MS Windows, Red Hat Enterprise Linux, and CISCO system. Preferred Skills and Experience: Bachelor's degree More than 5 years' experience with DIACAP or RMF Experience with USCG Security Requirements Physical Demands and Expectations: Regular physical activity to include walking, climbing stairs, bending, stooping, reaching, lifting (up to 30 pounds), and standing; occasional prolonged sitting Ability to speak, read, hear and write, with or without assistance Ability to use phone and computer systems, copier, fax and other office equipment This position description represents a summary of the major components and requirements of the outlined job. Other duties and responsibilities may be assigned or required as business needs dictate. Questions regarding this description should immediately be addressed to the department manager or to Human Resources.
Mission
Our mission is to enable people and organizations to achieve their full potential.
As a professional services organization our mission is focused on our clients' people and organizations. It is our company's cornerstone belief that we will not lead the industry in assisting our clients unless we excel at helping our own people and teams reach their full potential.
Culture
Our corporate culture encourages personal and professional growth because LCE's success depends on the talent, professionalism and commitment of its employees. LCE is a strengths-based organization focused on turning individual talents into strengths and then turning individual strengths into organizational performance that supports our clients' success.
Benefits Affordable Medical/Dental/Vision Plans for employees and their families. Free Employee Life and Disability Insurance, with supplemental coverage options available. Health Savings Account and Flexible Benefit Account options Company matched 401K & company funded Employee Stock Ownership Program Paid Vacation, Holidays, & Sick Leave Continuing Education & Professional Development Programs at all levels Flexible Schedules & Relaxed Dress code Employer sponsored events, social collaboration, and open communication Free access to an extensive online training library, including certification prep Bonus Program for outstanding contributions, Employee Referral Program, numerous Recognition Opportunities, and more... *Benefits may vary by business unit & location. http://www.lce.com/Employee_Benefits_358.html
Life Cycle Engineering (LCE) shall abide by the requirements of 41 CFR §§ 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, or national origin. Moreover, these regulations require that LCE take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability. In addition, LCE will not discharge or in any other manner discriminate against any employee or applicant for employment because such employee or applicant has inquired about, discussed, or disclosed the compensation of the employee or applicant or another employee or applicant. LCE shall also abide by the requirements of 29 CFR Part 471, Appendix A.
Pay Rate:
Unspecified
HR. Website URL:
https://www.lce.com/Life-Cycle-Engineering-Careers-139.html
Sign Up to Apply to this position
(if you already have a CGO account, just press the button below)
About Life Cycle Engineering
Company Profile Not Available
Please visit this employer's Public Profile to see more jobs offered by Life Cycle Engineering