Product Security Engineer
Job Description:
A Product Security Engineer supports multiple aspect of the Product Security Engineering lifecycle to ensure system resiliency and regulatory compliance.
Product Security Engineer responsible for applying an interdisciplinary, collaborative approach to plan, design, develop, validate, and verify lifecycle balanced information system security solutions.
Identifies product assets risks, threats, and vulnerabilities in accordance with accepted industry, professional, and government standards, ensuring security design integrity, availability, confidentiality, non-repudiation and contract compliance.
Coordinates with systems engineers, system administrators, network and software engineers, test and validation engineers, and program management on security related activities and requirements.
Assess risks, threats and vulnerabilities of the product assets and production systems in accordance with accepted industry, professional, and government standards to ensure security design integrity, availability, confidentiality, and regulatory compliance.
Perform requirements verification on system security engineering products using inspection, analysis, demonstration, and test methods.
Execute recurring and maturing Product Security Engineering analysis, design, implementation, and test across the SITR program and teams, and responsible engineers in partner teams.
Develop comprehensive assessment-based reports detailing system security findings, and recommendation to increase overall system security posture.
Perform incremental criticality, adversity, and threat analysis on complex, highly technical systems.
Collaborate on design & development strategy with responsible engineers for traceable mitigations, including design constraints and concepts to minimize risk and vulnerability and increase GMD system resiliency and assurance.
Champion and participate fully in Agile planning and execution.
Requirements:
Secret clearance-US prestart DoD 8570 IAT/IAM Level II Certificate or higher IAT/IAM level.
This position requires the ability to obtain a U.
S.
Security Clearance for which the U.
S.
Government requires U.
S.
Citizenship.
This position requires clearing a background check and an enhanced Personal Conflict of Interest (PCI) requirements as a condition for employment.
Desired
Experience:
Risk Management Framework process along with both the NIST and DOD standards for RMF Experience with ACAS and eMASS applications and processes.
Experience with IBM DOORS, or other requirements management programs.
Various cyber related compliance standards:
TEMPEST, DFARS Clause 252.
204-7012, COMSEC, CNSSI 1253, DOD 8570, NIST 800-160, NIST 800-53 (and 53A), NIST 800-30, NIST 800-171, NIST 800-55, NIST 800-137, NIST 800-39.
) Excellent team player with strong written and oral communication skills Confident in a fast-paced environment with competing priorities, and able to multi-task and manage expectations.
Recommended Skills Agile Methodology Communication Confident And Emotionally Stable Confidentiality Information Systems Multitasking Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
