Maxar seeks an Information System Security Engineer ( ISSE) who can collaborate as a team partner with a dynamic full technology stack engineering team working on a large-scale Government Information software system in both operations and new development. The ISSE must possess technical, organizational and teamwork skills necessary to support the security of complex US Government Information Systems. LINUX proficiency is required.

Note: US citizenship and an active TS/SCI clearance is mandatory for this position and required for consideration. Consideration to acquire CI Poly possible.

Location: Northern Virginia

Principal Responsibilities:

• Program Cyber Security Execution
  • Execute all aspects of the cybersecurity program for Government Information Systems at multiple classification levels including:
    • Work collaboratively with the technical team to manage and execute the program Continuous Monitoring (CONMON) process
    • Implement patching and STIG on the IS as needed on LINUX systems
    • Conduct vulnerability scan analysis and remediation plan creation and coordination
    • Work with team to write and successfully execute Risk Mitigation Framework (RMF) and Plans of Action and Milestones (POA&Ms) to address cyber security issues and liens
    • Work with the program ISSE, accreditors and other system stakeholders to accurately represent the programs cyber security posture to key Government decision makers
    • Work with the team tech leads to drive cyber security awareness and requirements into the program development process
    • Work with the project team to develop and document security controls implementations and create IS accreditation packages to include:
      • Security Concepts of Operations (CONOPS)
      • System Security Plans (SSPs)
      • Business Continuity/Disaster Recovery Plans (BCDRPs)
      • Controls Family Policy and Procedures documents
  • Acquire detailed system and programmatic knowledge while executing the cyber security program to develop subject matter expertise in the following areas
    • The organizational structure of the programs cyber security practice
    • The documentation of the programs cyber security controls
    • The compliance requirements levied on the system by the Government enterprise

Experiences and Skills Required

• Experience in Information Technology, Information Assurance, Cyber Security or a related discipline plus 4 years of experience w/ degree (or 8 years experience w/o degree)
• Demonstrated strength with LINUX and STIG patching of systems
• Experience using vulnerability scanners
• Working knowledge of the Defense Information System Agency (DISA) Security Technical Implementation Guides (STIGs) and how they are applied to ISs
• Working knowledge of the Risk Management Framework (RMF) process as driven by ICD 503 and the National Institute of Standards and Technology (NIST) Special Publication 800 series
• Good verbal, organization, and communication skills with the team, stakeholders and Government
• Willingness to work in a SCIF 90 %
• Security or comparable certification (or willingness to obtain within 3 months of starting)
• Active TS/SCI clearance and US citizenship (open to obtain CI polygraph)

Additional Skills Desired

Some familiarity in these areas would be fabulous.

• Advanced cyber security certifications such as Certified Systems Security Professional (CISSP), Global Information Assurance Certification, or similar
• Demonstrated experience working in the cyber security program of a large, multi-tiered, multi-classification level system
• Demonstrated experience pre-empting, identifying and mitigating security incidents
• Familiarity with large scale virtualization environments and cloud computing systems
• Demonstrated experience with XACTA 360
• Familiarity with cyber security technology (SIEM tools, Firewalls, IDS, IPS, etc.)

#cjpost

#LI-RD

#LI-Onsite

Our salary ranges are market-driven and set to allow for flexibility. Individual pay will be competitive based on a candidates unique set of knowledge, skills, and geographic diversity, with earnings potential commensurate with experience. The range for this position is:

Maxar employees must follow all applicable Maxar policies and COVID-19 requirements as well as those of Maxar customers and third parties. Individual job requirements may vary, and Maxar reserves the right to modify its policies and requirements as it deems appropriate in accordance with applicable law.

Maxar Technologies values diversity in the workplace and is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.