Mission Critical Software Security Engineer

US-MA-Cambridge
2 months ago
Requisition ID
2017-2154

Overview

Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 1,600 employees of Draper tackle important national challenges with a promise of delivering successful and usable solutions. From military defense and space exploration to biomedical engineering, lives often depend on the solutions we provide. Our multidisciplinary teams of engineers and scientists work in a collaborative environment that inspires the cross-fertilization of ideas necessary for true innovation. For more information about Draper, visit www.draper.com.

 

Our work is very important to us, but so is our life outside of work. Draper supports many programs to improve work-life balance including workplace flexibility, employee clubs ranging from photography to yoga, health and finance workshops, off site social events and discounts to local museums and cultural activities. If this specific job opportunity and the chance to work at a nationally renowned R&D innovation company appeals to you, apply now www.draper.com/careers.

 

 

Equal Employment Opportunity

Draper is committed to creating a diverse environment and is proud to be an affirmative action and equal opportunity employer.   We understand the value of diversity and its impact on a high-performance culture.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.   

 

Draper is committed to providing access, equal opportunity and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation, please contact hr@draper.com.

 

 

Responsibilities

  • Support emerging and existing programs in defining, architecting and implementing cybersecurity solutions and requirements.
  • Activities will include:
    • Providing guidance and direction related to security technologies.
    • Defining and developing cybersecurity requirements, design and architecture artifacts, strategy, plans, and policies
    • Software development and testing to assure mission performance with respect to cyber security and overall mission requirements
    • Overseeing the development and maintenance cybersecurity solutions for multiple systems
    • Preparing and maintaining cybersecurity design and preparing and maintaining engineering and security related documentation.
    • Conducting cybersecurity audits to ensure security controls are implemented, effective,and adequate to provide an acceptable level of risk
    • Collaborating with program and engineering disciplines to ensure the cybersecurity requirements are met
    • Performing DoD Cybersecurity Assessment and Authorization (A&A) using Risk Management Framework (RMF) as the Information System Security Engineer (ISSE) or Officer (ISSO) for a system portfolio

 

Qualifications

Required Skills:

  • Passion for developing and testing software systems
  • Knowledgeable of the following security processes: DIACAP, RMF, NSA, anti-tamper, and Program Protection
  • 2 years of Technical (hands-on) experience related to Information Assurance/Cyber Engineering requirements, determination, development, and implementation
  • Experience in security systems engineering involving various computer hardware and software operating system and application solutions in both a stand-alone and in LAN/WAN configurations
  • Experience with security features and/or vulnerability of various operating systems as defined by NSA, NIST, DISA (STIGs) and USCYBERCOM.
  • Experience with IA vulnerability testing and related network and system test tools; e.g., NMap, Nessus, Security Content Automation Protocol (SCAP) Compliance Checker
  • Experience with information security toolset including
    • anti-virus,
    • Vulnerability Assessment,
    • HIDS/ NIDS
    • DoDI 8570.01-M IAT Level-II Compliant Certification
  • Familiar with
    • NIST Risk Management Framework as described in NIST Special Publication 800-37
    • DoD Cybersecurity program as described by DoDI 8500.01
  • This position will require the ability to obtain a US Security Clearance.  Main requirement for a security clearance is  US Citizenship.

  

Desired Skills:

  • Experience with network and system security administration, including operating system security configuration and account management best practices for UNIX(HP-UX & Solaris), MS Windows, Red Hat Enterprise Linux
  • Ability to organize, multi-task and prioritize tasks in a matrix organization
  • Experience in system engineering, program management, and DoD acquisition processes

 

Education:

BS or MS degree in Engineering, Computer Science, or related technical field

 

 

 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on social media

Connect With Draper for Future Opportunities!

If you don't find the right posting in our Career Opportunities, you may submit your resume for future consideration.