System Security Engineer - Senior

• Serve as technical expert to the Cybersecurity Assessment Program providing technical direction, interpretation and alternatives to complex problems.
• Develop procedures for implementation and validation to integrate effective security designs into system architectures.
• Perform information system security engineering tasks, ensuring that information security requirements are properly implemented throughout the processes of security architecture, design, development, configuration, and implementation.
• Develop, implement, and enforce information systems security policies ensuring system security requirements are addressed during all phases of the acquisition and Information System lifecycle
• Review, analyze and validate system security designs within embedded avionics systems to validate security control and architecture implementations
• Conduct certification and testing in accordance with the Risk Management Framework (RMF) and National Institute of Standards and Technology (NIST) policy; identify deficiencies and provide recommendations of risk mitigation to customer.
• Employ best practices when implementing security controls, including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques
• Integrate/Develop new techniques to improve Confidentiality, Integrity, and Availability for networks/systems operating at various classification levels
• Assist program managers, system engineers and cyber test engineers in conducting Mission Based Cyber Risk Assessments
• Participate in program protection analyses for program and system information, CPI, and critical components. Coordinate with the Anti- Tamper Executive Agent and test team to define AT requirements are implemented into system designs* Identify points of vulnerability, non- compliance with established cybersecurity standards and regulations, and recommend mitigation strategies
• Identify points of vulnerability, non-compliance with established cybersecurity standards and regulations, and recommend mitigation strategies
• Apply knowledge of cybersecurity policy, procedures, and workforce structure to implement secure networking, computing, and enclave environments
• Perform system or network designs that encompass multiple enclaves to include those with differing data protection/classification requirements
• Work closely with customers and vendors to provide expert level consultation and technical services on all aspects of System Security Engineering.
• Respond to technical issues in a professional and timely manner.

• Minimum of Eight (8) years of experience working in a cybersecurity related field
• Prior performance in roles such as ISSO, ISSM, ISSE/SSE or SCA
• Experience conducting security control assessments and/or implementation using NIST SP 800-53, NIST 800-171, ICD 503 and JSIG
• Must have the ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners
• Demonstrated experience in Systems Engineering writing systems level requirements, architectures, and designs
• Knowledge and experience working in the Systems Engineering "V" Lifecycle framework
• Familiar with the Digital Engineering Environment including using Model Based Systems Engineering and Model Based Cyber Risk Assessment tools
• Strong analytical and problem-solving skills
• Ability to take the initiative to complete tasks with minimal supervision
• Experience in Secure Software Development Lifecycle
• Experience working on DISA Security Technical Implementation Guide (STIG) implementation across multiple operating systems and applications
• Must be a team player and be able to work within all levels of a project team
• Excellent time management, scheduling, and organizational skills
• Ability to work well independently as well as follow detailed instructions for completing tasks
• Demonstrated ability to complete tasks, drive projects to closure, assimilate and correlate project information in a fast-paced environment
• Demonstrated ability to shift from one project to another in a dynamic, agile work environment
• Excellent oral and written communication skills and ability to clearly translate client technical needs into technical specifications
• Ability to communicate technical approaches and details within small project teams, including team interactions and presentations
• Familiarity with security procedures while working in a SCIF/SAPF environment

• Experience with aircraft avionics, system engineering or aircraft maintenance
• Prior work and experience working with aircraft, weapons or command & control systems
• Experience with various Security Content Automation Protocol (SCAP) tools such as Assured Compliance Assessment Solution (ACAS) (Nessus) and SCAP Compliance Checker (SCC)
• Experience using Security Incident and Event Management (SIEM) programs
• Experience with performing Mission Based Cyber Risk Assessments including the MRAP-C, Cyber Table Top or Blue Book

• BS degree from an accredited university including classes in Computer Science, Computer/Electronics/Electronics Engineering, Cybersecurity or related fields
• Must meet position and certification requirements outlined in the DoDD 8570.01-M for Information Assurance Security Engineer (IASE) level 2

• Possess an active Top Secret security clearance, based upon a Single Scope Background (SSBI/SBPR).
• Must be eligible for Sensitive Compartmented Information (SCI) and Special Access Programs (SAP) access.

• 20% anticipated travel, but could vary

• 
  
  
  
  Interesting Work:
  
  
  
  Our co-workers support some of the most important and critical programs to our national defense and security.
  
  
• 
  
  
  
  Values:
  
  
  
  Our first core value is that employees come first. We challenge our co-workers to provide the highest level of support and service, and reward them with some of the best benefits in the industry.
  
  
• 
  
  
  
  100% Employee Owned:
  
  
  
  We have a stake in each other's success, and the success of our customers. It's also nice to know what's going on across the company; we have company wide town-hall meetings three times a year.
  
  
• 
  
  
  
  Great Benefits - Most Full-Time Staff Are Eligible for:
  
  
  




• 
  Starting PTO accrual of 20 days PTO/year + 10 holidays/year
  
• 
  Flexible schedules
  
• 
  6% 401k match with immediate vesting up to $9k annually
  
• 
  Semi-annual bonus eligibility (July and December)
  
• 
  Company funded Employee Stock Ownership Plan (ESOP) - a separate qualified retirement account
  
• 
  Up to $10,000 in annual educational reimbursement
  
• 
  Other company funded benefits, like life and disability insurance
  
• 
  Optional zero deductible Blue Cross/Blue Shield health insurance plan
  




• 
  
  
  
  Track Record of Success:
  
  
  
  We have grown every year since our founding in 1993.
  
  

Modern Technology Solutions, Inc. (MTSI) is a 100% employee-owned engineering services and solutions company that provides high-demand technical expertise in Digital Transformation, Modeling and Simulation, Rapid Capability Development, Test and Evaluation, Artificial Intelligence, Autonomy, Cybersecurity and Mission Assurance

MTSI delivers capabilities to solve problems of global importance. Founded in 1993, MTSI today has employees at over 20 offices and field sites worldwide.

For more information about MTSI, please visit www.mtsi-va.com