L3Harris

Job Title: Senior Specialist, Info Sec Sys Engineer

Job Code: 10750

Job Location: Melbourne, FL

Job Description:

• Strong familiarity with Linux and Security Hardening  of Linux.
• Experience with securing Linux systems.
• Experience with Splunk administration.
• Experience with application of STIGs.
• Knowledgeable with malware detection systems for Windows and Linux.
• Experience in assessing and securing Infrastructure as Code configurations.
• Proficient in using and managing cloud-native security tools (AWS GuardDuty, AWS Security Hub, AWS WAF, etc.)
• Experience in cloud information flows and the process architecture necessary to implement cloud security.
• Understanding of Zero Trust security concepts and able to apply these principles to system and network architecture to enhance security posture.
• Cloud security knowledge including architecture, design, deployment and management of AWS and non-AWS cloud security technologies.
• Knowledge of RMF/NIST security requirements, documentation, and risk mitigation strategies.
• Expected to contribute to Product or Network Information Security Engineering activities pertaining to CDRLs, trade studies, security requirements analysis, secure architecture development, management & compliance with security controls, design review milestones (SRR, SDR, PDR, CDR) and security test/verification activities.
• Perform functional analysis, timeline analysis, detailed trade studies, requirements derivation and allocation, and interface definition studies to translate customer Information Security requirements into hardware and software specifications.
• Provide Information Assurance (IA) technical leadership for development teams of new multi-discipline (mechanical, electrical, software, RF, etc.) products.
• Responsible for developing security overlays, data flow diagrams, internal requirements, CONOPs and interface control documents from customer / product requirements.
• Identify security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives (hardware, software, cross-domain solutions, cryptographic devices, firewalls, intrusion detection systems, anti-virus systems and software deployment tools).
• Experience in writing and managing RMF body of evidence documents (e.g., System Security Plan (SSP), Security Compliance Traceability Matrix (SCTM), Risk Assessment Report (RAR), Continuous Monitoring (ConMon) Plan, and Security Assessment Plans and Procedures (SAPP).
• Knowledgeable in supporting incident response activities, including threat hunting within the environment.
• Experience in training developers, and other non-security engineering team members to be security champions.
• Job is 100% remote

Qualifications:

• Bachelor’s Degree and minimum 6 years of prior relevant experience, or Graduate Degree and a minimum of 4 years of prior related experience or In lieu of a degree, minimum of 10 years prior related experience
• Must be able to get Public Trust

Preferred Additional Skills:

• DoD 8570.01-M IASAE Level 2 certification (e.g. CASP+ CE or CISSP (or Associate)).
• Experience with administration and securing Linux (RHEL/CentOS), Microsoft products including Windows Server 2016+, Windows 10, Microsoft System Center Configuration Manager, and WSUS.
• Foundational knowledge of Layer 3 architecture and diagramming within Visio (or equivalent).
• Basic understanding of routing and switching as employed in telecommunications and network traffic.
• General knowledge of common threats to information systems and how compromise would damage system integrity.
• Capable of supporting management of VLANs, VRF, virtual switching, multi-layer switching, Multi-layer Firewalls, ACLs, secure configuration, bulk link encryption (KGs).
• Supporting account management, PKI cert management, LDAP configuration/management.
• Scripting experience (Bash/Shell, Python, Perl, PowerShell).