200681 - Product Security Engineer 4
Industry
IT
Region
CO-Colorado
City
Colorado Springs
State
CO
Rate
$DOE
Duration
12 months
Description


Chipton-Ross is seeking a Product Security Engineer 4 for a contract opportunity in Colorado Springs, CO.

This position is 100% onsite.

RESPONSIBILITIES:
Leads the development, implementation, and sustainment of product security and resiliency throughout the requirements, design, build, test, production, operations, and support lifecycle. Leads the development and enhancement of system requirements and architectures for product security to meet all applicable certification and customer requirements. Ensures security of facilities, equipment, tools, data, networks, and resources used for product: design, development, build, test, storage, delivery, operations, and support. Leads the definition and identification of product security requirements for suppliers of components and subsystems for integration into complex Client products and services. Leads coordination with governments, customers, suppliers, and industry to identify risks and improve industry and regulatory security standards and requirements for programs and interfacing systems. Leads research and development activities resulting in innovative solutions. Leads the advisement of customers on maintaining product security and certification, including security consequences of modifying products and services. Leads the development, implementation, and sustainment of product security and resiliency throughout the requirements, design, build, test, production, operations, and support lifecycle. Leads the development and enhancement of system requirements and architectures for product security to meet all applicable certification and customer requirements. Ensures security of facilities, equipment, tools, data, networks, and resources used for product: design, development, build, test, storage, delivery, operations, and support. Leads the definition and identification of product security requirements for suppliers of components and subsystems for integration into complex Client products and services. Leads coordination with governments, customers, suppliers, and industry to identify risks and improve industry and regulatory security standards and requirements for programs and interfacing systems. Leads research and development activities resulting in innovative solutions. Leads the advisement of customers on maintaining product security and certification, including security consequences of modifying products and services.
Supports Product Security Engineering to implement cybersecurity features on program systems and implement RMF processes for computing systems.
Evaluates customer/operational needs to help define and coordinate system security requirements, integrate technical parameters and assure compatibility of all physical, functional and program interfaces.
Performs various analyses to optimize total system of systems and/or system architecture. Identifies assets and assesses risks, threats, and vulnerabilities of the product assets in accordance with accepted industry, professional, and government standards to ensure security design integrity, availability, confidentiality, non-repudiation and contract compliance.
Evaluates remediation recommendations and develops a cost to mitigate estimate.
Support the engineering analysis of security findings from vulnerability scanning tools and help software teams implement mitigations
Employs system security processes, methods, and tools and assures their consistent application. Resolves cross-functional technical issues.
Implements appropriate Accreditation and Authorization activities per RMF, NISPOM, or DoD Overprint to the NISPOM as required by customers.
Coordinates with system administrators, network and software engineers, test and validation engineers and program management on security related activities and requirements.
Travel (10%) will be required for meetings with customers, internal meetings, etc.
Works under minimal direction.

REQUIRED EXPERIENCE:
DoD 8570 IAT Level II Certification.
5+ years of experience with Information Systems Security is required.

PREFERRED DESIRED QUALIFICATIONS:
Experience with DevSecOps and Continuous Integration/Continuous Delivery (CI/CD)

EDUCATION:
Accredited minimum of a Bachelor, Master, or Doctorate of Science degree in engineering, computer science, information systems or other cyber related degree; ten (10) or more years of directly related experience in lieu of a degree is acceptable.

WORK HOURS:
Full-Time
1st Shift

MISCELLANEOUS:
Applicants responding to this position will be subject to a government security investigation and must meet eligibility requirements by currently possessing the ability to view classified government information.

Employment will be contingent on clearing a drug screen and background check. Both must clear prior to start date.

Contact
Taj Johnson
tjohnson@chiptonross.com
CHIPTON-ROSS, INC.
420 Culver Boulevard
Playa Del Rey, CA 90293

Phone: (310) 414-7800 x283 or (800) 927-9318 x283

Candidates responding to this posting must currently possess the eligibility to work in the United States. No third parties please.

Employment will be contingent on candidate clearing pre-employment drug screen and background check.

Chipton-Ross provides equal employment opportunities to all employees and applicants for employment without regard to race, color, creed, religion, national origin, sex (including pregnancy), age, disability, sexual orientation, gender identity and/or expression, protected veteran status, genetic information, or any other characteristic protected by Federal, State or local law. This policy governs all areas of employment at Chipton-Ross, including recruiting, hiring, training, assignment, promotions, compensation, benefits, discipline, and terminations.