logo



216105 - Product Security Engineering 2

Industry
ENG
Region
MO-Missouri
City
St. Charles
State
MO
Rate
Up to $70.99 DOE
Duration
12 months
Description

Chipton-Ross is seeking a Product Security Engineering 2 for a contract opportunity in St Charles, MO.



BASIC QUALIFICATIONS (REQUIRED SKILLS/EXPERIENCE):

  • Bachelor of Science degree from an accredited course of study in engineering, engineering technology (includes manufacturing engineering technology), chemistry, physics, mathematics, data science, or computer science.
  • Current DoD 8570 certification at IAT Level II / IAM Level I or higher (e.g., Security+, GSEC, SCNP, SSCP, CISSP, CISA, GSE, SCNA)
  • 1+ years of experience in product security / cybersecurity engineering
  • 1+ years of experience with industry standard cybersecurity frameworks (NIST, OWASP, DFARS)
  • Experience using analytical, collaboration, communication and organizational skills

    • POSITION RESPONSIBILITIES:

    Team members will work with other industry partners in the development and execution of a comprehensive assessment program supporting the specialized Advanced Weapons Proprietary Programs in the Space, Intelligence & Weapons Systems (SIWS) organization. These individuals will act as the primary product security engineers on the program for assessing, updating, and maintaining the security posture of the programs. This team will be supporting the program’s systems by interacting continuously with the cyber team compliance team to remediate any vulnerabilities found during automated or manual cyber scans. A detailed oriented individual with a strong leadership skillset is a must for this position.
  • Assess organization-wide security and privacy risk and update assessment results on an ongoing basis
  • Perform system analysis and develop system test for cyber threats, cyber test activities, and the cybersecurity of large-scale events
  • Ensure product security engineering development lifecycle is followed, with an emphasis on clear requirements development/verification (using CAMEO)
  • Perform criticality analysis to include the ability to work with suppliers, identify critical components, and integrating them into the overall system
  • Perform cyber risk assessments and develop risk mitigation plans (i.e., POA&Ms, SCRM, etc.) using a variety of tools including but not limited to CAMEO
  • Support and facilitate various ATO/IATT packages including processing IAVMs and CTOs for the same
  • Perform software assurance tasks, including but not limited to software assurance risk reports
  • Support proposal development efforts, including but not limited to: BOE generation, GR&A development, trade study analysis
  • Support the engineering installation & analysis of patches and various system updates and upgrades to determine system consequence of these changes
  • Attend, collect data from, out brief, and facilitate collaboration and project management from various program boards
  • Applying Security Technical Implementation Guides (STIGs)
  • Managing and addressing any Cyber Tasking Orders (CTOs) related to the Cyber Tools
  • Documentation and verification of all installation and configuration steps for the labs and operations deliveries
  • Providing feedback to Cyber Leadership and engineers to improve the cybersecurity tools and processes
  • Collaborating with local Information System Security Officers (ISSOs) to ensure compliance with relevant cybersecurity standards and regulations
  • Support cyber threat intelligence activities
  • Support the development and maintenance of cyber scanning, patching, remediation, tools and applications
  • Support, as required, TEMPEST, DFARS, COMSEC, CNSSI, and other compliance drivers as needed
  • Perform and/or support the development of tools for cyber forensics
  • Develop, define efficiencies and improvements to tools to improve team productivity
  • Perform system analysis trade studies to define technical concepts and solutions

    • PREFERRED QUALIFICATIONS (DESIRED SKILLS/EXPERIENCE:

  • Experience using CAMEO (proficiency preferred)
  • 2+ years of experience in Windows/RHEL System admin experience, installing, tuning & troubleshooting Cyber Tools to include ESS/HBSS, ConfigOS, Splunk, etc.
  • 2+ years of experience in configuring, running, and scripting audit tools
  • 2+ years of experience using knowledge of Software Assurance (SwA) static and/or dynamic code analysis (e.g. Fortify)
  • Experience with Federal Information Security Management Act (FISMA)/RMF and National institute of Standards and Technology (NIST) 800-53 requirements
  • Experience leading system and component level cyber test and evaluation, including threat and security assessments, and tabletop exercises
  • Experienced self-starter with strong written and oral communication skills, and a focus on translating technically complex issues into simple, easy to understand concept
  • Growing understanding of DoD defense systems architectures and communications system concepts, mission, and common system test and data analysis techniques

    • REQUIRED EDUCATION:

    Education/experience typically acquired through advanced technical education from an accredited course of study in engineering, engineering technology (includes manufacturing engineering technology), computer science, engineering data science, mathematics, physics or chemistry (e.g. Bachelor) and typically 2 or more years' related work experience or an equivalent combination of technical education and experience or non-US equivalent qualifications. In the USA, ABET accreditation is the preferred, although not required, accreditation standard.

    WORK HOURS FULL TIME/FIRST SHIFT; 9:00 AM - 5:00 PM

    ADDITIONAL Applicants responding to this position will be subject to a government security investigation and must meet eligibility requirements by currently possessing the ability to view classified government information.


    Employment will be contingent on clearing a drug screen and background check. Both must clear prior to start date.

    Contact
    Robert Davis
    rdavis@chiptonross.com
    CHIPTON-ROSS, INC.
    420 Culver Boulevard
    Playa Del Rey, CA 90293

    Phone: (310) 414-7800 x305 or (800) 927-9318 x305

    Candidates responding to this posting must currently possess the eligibility to work in the United States. No third parties please.

    Employment will be contingent on candidate clearing pre-employment drug screen and background check.

    Chipton-Ross provides equal employment opportunities to all employees and applicants for employment without regard to race, color, creed, religion, national origin, sex (including pregnancy), age, disability, sexual orientation, gender identity and/or expression, protected veteran status, genetic information, or any other characteristic protected by Federal, State or local law. This policy governs all areas of employment at Chipton-Ross, including recruiting, hiring, training, assignment, promotions, compensation, benefits, discipline, and terminations.