Systems Security Engineer

MTSI is seeking a highly skilled Systems Security Engineer to design, evaluate and maintain secure systems and networks within an embedded government-focused environment. The ideal candidate will work collaboratively with cross-functional teams to ensure compliance with Department of Defense (DoD) security standards, protect critical systems, and address emerging cybersecurity challenges. This role involves providing expertise in systems security architecture within embedded avionics systems, advising on anti-tamper designs, planning and coordinating mission based cyber risk assessments, conducting cybersecurity risk assessments, and performing system design reviews.

Responsibilities

• Apply an understanding of DoD, Air Force and common engineering/scientific principles, processes and procedures to improve performance and sustainability of existing and future weapon systems.
• Translate user requirements into weapon system requirements which will be used to design, develop, fabricate, test and evaluate weapon systems, subsystems and equipment for eventual fielding and deployment.
• Perform technical/mission analyses of existing and future operational requirements, assist in developing systems concepts and perform technical trade-off assessments of designs/modifications.
• Develop and maintain Risk Management Framework documentation necessary to obtain Authorizations including but not limited to the System Security Plan (SSP), Architecture Analysis Report (AAR), Continuous Monitoring Plan, Security Control Traceability Matrix (SCTM), Security Assessment Report (SAR) and Risk Assessment Report (RAR).
• Provide support to produce or review technical documentation for acquisition programs including Cybersecurity Strategy, Test and Evaluation Master Plan (TEMP), Clinger-Cohen Act Compliance, Capabilities Development Document, Concept of Operations and more.
• Support system engineering and program management in conducting and reviewing milestone documentation including System Requirements Review (SRR), Preliminary Design Reviews (PDR), Critical Design Reviews (CDR) and Program Management Reviews (PMR).
• Perform information system security engineering tasks, ensuring that information security requirements are properly implemented throughout the processes of security architecture, design, development, configuration, and implementation.
• Develop, implement, and enforce information systems security policies ensuring system security requirements are addressed during all phases of the acquisition and Information System lifecycle.
• Review, analyze and validate system security designs within embedded avionics systems to validate security control and architecture implementations
• Conduct Assessment & Authorization (A&A) tasks in accordance with the Risk Management Framework (RMF) and National Institute of Standards and Technology (NIST) policy; identify deficiencies and provide recommendations of risk mitigation to program management.
• Employ best practices when implementing security controls, including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques
• Integrate/Develop new techniques to improve Confidentiality, Integrity, and Availability for networks/systems operating at various classification levels
• Assist program managers, system engineers and cyber test engineers in conducting Mission Based Cyber Risk Assessments
• Identify points of vulnerability, non-compliance with established cybersecurity standards and regulations, and recommend mitigation strategies
• Apply knowledge of cybersecurity policy, procedures, and workforce structure to implement secure networking, computing, and enclave environments
• Identify system and/or network designs that encompass multiple enclaves to include those with differing data protection/classification requirements

Qualifications:

REQUIRED:

• Education: BS degree from an accredited university including classes in Computer Science, Cybersecurity, Electrical/Electronics/Systems/Computer Engineering, or related field.
• Experience: 5+ years of experience in systems security architecture or engineering, ideally within a government or DoD environment.
• Certifications: Relevant certifications related to a Security Architect in accordance with DoD 8140 (CISSP, CISM, CCSP).
• Knowledge: Deep understanding of cybersecurity frameworks (NIST) and standards, RMF, DISA STIGs, and system accreditation processes.
• Technical Skills: Expertise with security concerns in avionics, embedded systems, Operational Technology and Supervisory Control and Data Acquisition systems. Familiarity with network security, firewalls, intrusion detection/prevention systems, secure coding practices, and vulnerability scanning tools.
• Must possess an active Top Secret clearance with eligibility for SCI.

DESIRED:

• Experience with government contracting and DoD security program management.
• Familiarity with scripting, automation tools, and secure system integration techniques.
• Understanding of cloud security in classified environments.

Travel: 20% anticipated travel, but could vary

#LI-CH1

#LI-Onsite

#Dragons

#Skyline