Information Systems Security Engineer (ISSE)
Located in Malibu, California, HRL has been on the leading edge of technology, conducting pioneering research and advancing the state of the art.
HRL is seeking an Information Systems Security Engineer (ISSE) whom is a motivated, self-starter that can take on a variety of tasks supporting multiple customers. The selected candidate will ensure that the Risk Management Framework (RMF) cybersecurity requirements are effectively integrated into information systems through purposeful security engineering, design, development, implementation and continuous monitoring. The ISSE will work closely and effectively with the ISSM and Manager of Information Systems on all aspects of their development and implementation programs.
The role of the ISSE is to bridge the gap between high-level security policies/requirements and technical/operational implementation of those requirements. Candidates should have in-depth understanding (SME) of the cybersecurity policies and procedures for government sector information systems along with sufficient technical knowledge/experience to implement them.
This is a multi-tasking environment that demands customer service, communication, and organizational skills. A successful candidate will be motivated, results-oriented, and have a willingness to learn. The ISSE will maintain the operational security posture to ensure information systems (IS) security policies, standards, and procedures are established and followed.
•Define, plan, design, and evaluate information security systems by:
o Providing solutions for and implement RMF security controls.
o Performing requirements analysis, design, and integration for complex software applications and collaboration infrastructures.
•Conduct assessment testing and reporting in accordance with the RMF and NIST 800-53; 800-171; and the Cybersecurity Maturity Model Certification; identifies deficiencies (POA&M) and provides recommendations for solutions.
•Participate in the change management process, and assess security impact of proposed changes.
•Write implementation and design documents describing how security features are implemented.
•Conduct assessments of existing IT architecture for compliance with security requirements from applicable security frameworks (such as ICD 503, JSIG Rev 4, and DAAPM V2).
•Provide input to A&A process activities and related documentation such as systems concept of operations, system security design, implementation plans, operational procedures, and maintenance training materials.
•Provide engineering support and assistance to authorization/accreditation test and evaluation activities.
•Provide continuous monitoring support for information systems.
•Develop IT architecture deliverables, specific to information security countermeasure implementations, for operational systems and systems under development.
•Evaluate proposed security architectures and designs and provide input as to the adequacy of those security designs to meet required security compliance objectives.
•Develop and maintain processes and procedures to identify, track and mitigate customer system vulnerabilities.
•Strong familiarity with the NIST and Risk Management Framework (RMF), including CNSSI 1253, ICD-503, JSIG Rev4, NIST SP800-53 and NIST 800-171.
•Working understanding of the customer’s vulnerability management programs.
•DISA Security Technical Implementation Guides (STIGs), and security hardening.
•Strong understanding of vulnerability management, Security Content Automation Protocol, Tenable Nessus, and vulnerability remediation processes, NIST SP 800-137, ICS 500-27 (IC Enterprise Audit) and fundamentals of continuous monitoring.
•Must possess excellent analytical skills and be capable of quantifying risk to enterprise systems and level of compliance with security policy.
•Experience with modern Microsoft, Splunk, and VMware technologies.
•Experience with McAfee EPO (HBSS).
•Experience working with Logs from various products such as Microsoft Server, Microsoft Exchange, Linux, and Manage Engine.
•Experience with Xacta and eMASS.
•Experience with Nessus, Red-Seal, and other vulnerability scanning tools.
•Experience defining and deploying security monitoring, metrics, and logging solutions/strategies across applications, systems and services where applicable.
•Experience working with Data Loss Prevention or Device Control Policy systems.
•Working knowledge of firewalls and networking experience is a plus.
•4+ years of experience in a security engineering role.
•The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.
Bachelor's Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.
Must be able to remain in a stationary position for extended periods of time. Responsibilities sometimes require working evenings and weekends, sometimes with little advanced notice. This position requires that applicant selected be a U.S. citizen with an active TS/SCI clearance. This job will also require up to 10% travel.
HRL offers a very competitive compensation and benefits package. Our benefits include medical, dental, vision, life insurance, 401K match, gym facilities, PTO, growth potential, and an exciting and challenging work environment.
HRL Laboratories is an Equal Employment Opportunity employer and does not discriminate in recruiting, hiring, training or promoting, on the basis of race, ethnicity, color, creed, religion, sex, sexual orientation, gender, gender identity, genetic information, national origin, physical or mental disability, pregnancy, medical condition, U.S. military or protected veteran status, union membership, or political affiliation. We maintain a drug-free workplace and perform pre-employment substance abuse testing.
- Pay Type Salary
- Malibu, CA, USA