Sierra Nevada Corporation | SNC | Logo Min Sierra Nevada Corporation SNC Logo Small search search icon arrow right arrow right icon press press release icon event event icon award award icon horn announcement icon facebook facebook icon google google plus icon linkedin linkedin icon youtube youtube icon instagram instagram icon flickr flickr icon icon pdf pdf download icon icon phone telephone number icon icon email email address icon

Sierra Nevada Corporation | SNC Sierra Nevada Corporation | SNC

Information Systems Security Officer (ISSO) / System Administrator

  •  Posted 30+ Days Ago
  •   Full time
  •  Louisville, CO
  •  R0009507

We are seeking an experienced Systems Security Engineer with a Bachelor's degree in Systems Security, Network Engineering, Information Technology, or a related Engineering field and at least 10 years of related experience. In this challenging, fast-paced environment, you'll have the opportunity to apply your knowledge and experience to design and create the most groundbreaking aerospace and defense technologies - those that exist today and those that will shape tomorrow. What to look forward to: As a Systems Security Engineer, you will be using your skills and expertise to design, test, and implement our secure operating systems, networks, security monitoring, and tuning. You'll be responsible for the management of our IT security systems and applications, incident response, digital forensics, loss prevention, and eDiscovery actions, conducting risk and vulnerability assessments, and developing and implementing security controls. You'll research, evaluate, and recommend new security tools, techniques, and technologies in alignment with our IT security strategy and introduce them to the enterprise.

At SNC’s Space Systems Group (SSG) we are not only the creator of the Dream Chaser® spacecraft, but also the designer and manufacturer of rocket engines and components, systems that sustain life in deep space, as well as systems and satellites that improve life here on Earth. The work of our Space Systems team not only supports the U.S. government (including NASA), but also commercial customers and international organizations. Learn more about SSG

  • Lead System Security Engineering (SSE) and Cybersecurity/IA efforts by establishing or validating the system boundary in describing the IS, its functions, information types operating environments, and security requirements
  • Team with SNC, customer, partner, and Authorization Officials (AO) to prepare systems for Assessment & Authorization (A&A) in accordance with established NISPOM, RMF for DOD IT, ICD 503, JSIG & NIST guidelines
  • Create and Maintain A&A/RMF documentation: Security Plan, Plan of Action & Milestones (POA&M), Software/Hardware Inventory, Network diagrams, INFOSEC Policies and Procedures, Risk Assessment Report, Security Assessment Plan and Report; Contingency Plan, Incident Response Plan, and Configuration Management
  • Capture and refine cybersecurity requirements and ensure that the requirements are effectively integrated into information systems throughout the System Development Life Cycle (SDLC)
  • Employ best practices when implementing security requirements within systems including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques
  • Provide multiple programs with Information Assurance oversight and document control implementations
  • Generate the body of evidence to support the A&A process, and guide multiple programs through the RMF process and obtain system Authority to Operate
  • Conduct security control assessments; review the adequacy of the security controls and their ability to protect the system and its information; tailor the security controls to ensure compliance
  • Coordinate the system security related activities with ISO’s, ISSM’s and CCP’s
  • Represent IA in the configuration management process; provide guidance in any acquisition/development activities that impact system security
  • Plan and conduct annual and/or ad hoc vulnerability scanning and security control assessments at customer sites to ensure compliance with Authorizing Official requirements (Continuous monitoring)
  • Participate in proposal efforts containing Cybersecurity/IA-related SOW/tasks to address scope, capability, cost, schedule, and resources
  • Read, interpret, and implement Cybersecurity/IA regulations and requirements; develop and maintain managerial, operational, and technical Cybersecurity/IA skillset
  • Collaborate with security managers (both corporate and local), other SSE’s and SSM’s to define, improve, implement and maintain information security policies, strategies, and procedures
  • Support Corporate-wide Security initiatives
  • Interface with company and customer staff at all levels
  • Periodic travel to SNC, customer and partner facilities in support of programs
     

ADDITIONAL RESPONSIBILITIES INCLUDE:

  • Follow SNC policies, procedures and work instructions for all technical activities
  • Punctuality to work each day and prepared to work scheduled work hours
  • Flexible work hours required
  • Off-hours implementations and remote site travel a must
  • Other duties as assigned

COMPLIANCE RESPONSIBILITIES:

Responsible for thoughtful adherence to all SNC Policies, Procedures, and Compliance regulations (internal and external)

ESSENTIAL FUNCTIONS:

  • Minimum physical requirements to perform all duties and responsibilities, as defined by management

SNC job descriptions are meant as summarizations only. They do not necessarily reflect all duties and responsibilities of a position.

EDUCATION/EXPERIENCE/SKILLS REQUIRED:

  • Requires a BS or higher in Engineering, Civil Engineering, Computer Science, or related field 
  • Current/Active Top Secret US Government clearance with SCI eligibility
  • 10+ years of related Security or system engineering experience
  • Experience with A&A requirements as outlined in the NISPOM, RMF for DOD, ICD 503, JSIG & NIST RMF

EDUCATION/EXPERIENCE/SKILLS PREFERRED:

  • Experience in supporting Information Technology (IT) within a classified environment
  • DoD 8570/8140 compliant: CAP, CISSP, ISSEP and/or other equivalent certification (desired) *Required within 6 months of hire. Cisco, Microsoft, Linux, or other technical certifications a plus
  • General understanding of the following tools: Splunk or ELK, ACAS / Nessus, HBSS, eMASS or Xacta
  • Complete/thorough understanding of US Government Cybersecurity policies
  • Ability to balance cybersecurity requirements with SNC’s mission, goals, and culture
  • Strong communication skills, strong critical thinking and problem solving skills; self-motivated with ability to effectively prioritize multiple projects; ability to work with people in a team environment and deal effectively with changing project priorities
  • Ability to manage time, make sound decisions, take independent action, analyze problems and provide focused solutions
  • High degree of attention to detail
  • Knowledge of technical standards relating to systems engineering, system design, and process development
  • Complete/thorough understanding of US Government Cybersecurity policies

IMPORTANT NOTICES:

  • This position requires a current/active Top Secret U.S. Security Clearance with SCI eligibility. U.S. Citizenship status is required as this position needs an active U.S. Security Clearance for employment. Non-US citizens may not be eligible to obtain a security clearance.  The Defense Industrial Security Clearance Office (DISCO), an agency of the Department of Defense, handles and adjudicates the security clearance process. Security clearance factors include, but are not limited to, allegiance to the US, foreign influence, foreign preference, criminal conduct, security violations and drug involvement.

At Sierra Nevada Corporation (SNC) we deliver customer-focused technology and best-of-breed integrations in the aerospace and defense sectors. SNC has been honored as one of the most innovative U.S. companies in space, a Tier One Superior Supplier for the U.S. Air Force, and as one of America’s fastest-growing companies. Learn more about SNC

SHARE