i3 is seeking a Senior Principal Cyber Systems Engineer to join our team in the Engineering functional organization. This position will be located in Huntsville, AL. The qualified applicant will support the Integrated Air Defense Battle Control System (IBCS) Team in the systems development, deployment and sustainment life cycle performing Risk Management Framework security activities as it pertains to the program environment to include a large SW development and Labs environment.
Responsibilities
The candidate selected will be expected to lead a team performing security related tasks including, but not limited to; identification of applicable software security requirements, providing guidance to products to meet those requirements and mitigate potential vulnerabilities.
Establish a schedule that will garner an Authority to Operate from Defense Counterintelligence and Security Agency (DCSA), and lead the team in all activities necessary to achieve the ATO.
Develop or assist with development of necessary documentation to support the Security Plan, baseline, STIG Checklists and PO&Ms.
The Lead will be the primary cyber interface with the NG Security team (ISSOs and ISSMs) and will be required to participate in or host technical interchange meetings and give formal presentations to program leadership.
Oversee IAVA acquisition, Lab product implementation and reporting results to the IBCS leadership.
The Lead will oversee generation of formal security requirements and the validation of their implementation.
Provide direct technical interaction with program teams.
Qualifications
9 years experience with Bachelors; 7 Years with Masters; 4 Years with PhD. 4 additional years acceptable in lieu of a degree.
Current Secret Security Clearance required
Current Security certification (e.g. Security+ CE or CISSP)
Working knowledge of computer and network security implementations
Working knowledge of NIST 800-52 Risk Management Framework security requirements
Working knowledge of identification and authorization mechanisms
Working knowledge of security test tools
Working knowledge of Program Protection requirements
Working knowledge of protecting Critical Program Information via tactics and techniques
Working knowledge of Operations Security (OPSEC)
Current Information Assurance Technical 2 professional security certification such as Security + required and must obtain a CISSP within 6 months of hire
Strong interpersonal and communications skills
Strong presentation skills
Strong writing skills
Preferred Qualifications:
Experience working ATOs with Defense Counterintelligence and Security Agency (DCSA),and understanding of DCSA requirements
Knowledge of the Risk Management Framework (RMF) desired
Knowledge of Supply Chain Risk Management (SCRM) desired
Familiarity with DoD security compliance documents and Linux or RHEL, VMware and Windows environments is desired