Senior Information Systems Security Engineer (ISSE)

York Space Systems · Greater Denver Area

Company

York Space Systems

Location

Greater Denver Area

Type

Full Time

Job Description

Salary: $120,000 - $127,000
York Space Systems was founded to radically improve spacecraft affordability and reliability, transforming, and enabling next-generation space mission operations worldwide. Today, York is one of the most innovative aerospace companies, specializing in end-to-end customer solutions and the rapid production of spacecraft platforms. York’s complete Space Segment Solution includes spacecraft production, payload integration, system integration & test, launch services, ground segment services, and mission operations, enabling customers to leverage York’s existing technology solutions to get to orbit rapidly and responsively. We’re looking to expand our team across the board.
York Space Systems is seeking a Senior Information Systems Security Engineer (ISSE) whose responsibilities include ensuring compliance with government security requirements pertaining to computer systems processing classified information across the company. The selected candidate will support multiple RMF accreditation efforts and will perform tasks that include hardware/software configuration management (to include baseline configuration), risk assessments/vulnerability assessments, testing and documenting security controls, and ensuring overall compliance with cybersecurity policies. The ideal candidate will have system security experience spanning an array of different platforms/systems and will take initiative in collaboration between site Information Assurance (IA) teams. The candidate must be comfortable operating in a senior role and providing mentorship to junior ISSEs. This candidate will also collaborate with cross-site Information System Security Officers (ISSOs) to meet system security requirements that align across the company.
RESPONOSBILITIES
  • Support the development and implementation of Risk Management Framework (RMF) / Assessment and Authorization (A&A) processes, providing technical inputs as needed for both ground and space assets
  • Ensure that selected security controls are implemented and operating as intended during all phases of the Information System (IS) lifecycle and RMF process
  • Lead and assist self and site ISSEs to deploy and configure collection services and tools
  • Collaborate with Systems Engineering and design review stakeholders to integrate cyber requirements into space assets throughout production and operation phases
  • Collaborate with ISSOs to continuously evaluate system security posture and maintain security baseline in accordance with system accreditation
  • Maintain system boundary security configurations to include patch management, vulnerability remediation, implementing STIGs, and any additional system security configurations as needed
  • Assist the ISSM/ISSO in conducting cybersecurity controls assessments in accordance with applicable regulatory guidance and contractual requirements
  • Perform control validation and remediation validation of network servers, routers, and switches to ensure they comply with security policy, procedures, and technical requirements
  • Establish secured host baseline (SHB) image to be applied to multiple operating systems and DISA STIGs
  • Perform vulnerability testing using system test tools (i.e., ACAS/Nessus, Security Content Automation Protocol (SCAP), and/or Security Technical Implementation Guides (STIGs)) and remediate flaws within directed timeframe
  • Perform system and user level backups and configuration of backup offloads IAW system monitoring plans
  • Identify and develop authorization boundary diagrams, architecture diagrams, and hardware and software inventories in coordination with the Network Systems Architect/Engineer
  • Perform tasks related to compliance of Continuous Monitoring (ConMon) Plans
  • Ensure that hardware, software, data, and facility resources are archived, sanitized, or disposed of in a manner consistent with system security plans and requirements
  • Participate in the change management process, and assess security impact of proposed changes
  • Ability to advise the ISSOs/ISSEs or relevant security personnel to remediate system deficiencies
  • Report all security-related concerns and changes that may affect the system to the ISSM
  • Provide system administrator support as needed
  • Other duties as deemed appropriate for this position
REQUIRED QULAIFICATIONS
  • A Bachelor's Degree in Information Technology, Information Systems Security, Computer Engineering, Cybersecurity, or related field
  • Minimum 6 years’ experience, preferably in a security position for the government or government contractor, utilizing systems security engineering experience
  • DoD 8570 IAT Level II Certification or equivalent or ability to receive certification upon hire
  • Active Secret clearance or higher
  • Proficient in Microsoft Windows and Linux operating systems
  • Experience using DISA Security Technical Implementation Guides (STIGs), Security Requirements Guide (SRGs) and Security Content Automation Protocol (SCAP) for hardening of devices
  • Can independently identify system vulnerabilities and report to system ISSO 
  • Strong communication and documentation skills
  • Self-motivated individual who can complete tasks independently and apply experience to overcome challenges
REQUIRREMENTS/ PREFERRED EXPERINCE
  • Experience with information security toolsets including anti-virus configuration, vulnerability scanning, Multi Factor Authentication (MFA), Security Incident and Event Management (SIEM) and centralized auditing tools (Splunk preferred)
  • Experience in conducting software due diligence with COTS and GOTS solutions
  • Knowledge of IT security principles and methods (e.g., firewalls, demilitarized zones, encryption)
  • Knowledge of PKI and entitlements management
  • Working knowledge of virtualization technologies
  • Working knowledge of scripting/programming languages (PowerShell, Python, BASH)
  • Working knowledge and experience with switches/routers/firewalls
York Space Systems provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, military or protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Must have permanent authorization to work in the United States. This policy applies to all terms and conditions or employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. YORK SPACE SYSTEMS IS AN EEO EMPLOYER.
Apply Now

Date Posted

06/07/2023

Views

7

Back to Job Listings Add To Job List Company Profile View Company Reviews
Positive
Subjectivity Score: 0.9

Similar Jobs

Senior Electrical Engineer - Red 6

Views in the last 30 days - 0

Red 6 is a pioneering AR technology startup specializing in synthetic air combat training The company is seeking a Senior Electrical Engineer to contr...

View Details

Systems Engineer - Mission Operations Lead - York Space Systems

Views in the last 30 days - 0

York Space Systems is seeking a Systems Engineer Mission Operations Lead The role involves acting as the mission operations focal point leading the de...

View Details

Launch Systems Integration Engineer, Sr. - York Space Systems

Views in the last 30 days - 0

York Space Systems an innovative aerospace company is seeking a Launch Systems Integration Senior Engineer The role involves coordinating spacecraft l...

View Details

Software Engineer-Simulation, Integration and Test - York Space Systems

Views in the last 30 days - 0

York Space Systems a leading aerospace company is seeking a passionate candidate with an Aerospace and Software background to join their Simulation In...

View Details

Marketing Systems Developer - Klaviyo

Views in the last 30 days - 0

Klaviyo a leading marketing automation platform is seeking a skilled GTM Marketing Integrations Salesforce Developer The ideal candidate will have a ...

View Details

Senior Lead, Partner Marketing - SMB Demand Generation - Klaviyo

Views in the last 30 days - 0

Klaviyo is seeking a Sr Partner Marketing Manager for SMB Demand Generation The role involves driving direct engagement with SMB partners creating imp...

View Details