Information Systems Security Engineer (ISSE)

systems

machine learning

analytics

Please review the job details below.

Maxar is seeking an independent, creative and driven Information Systems Security Engineer (ISSE) to join their big-data platform team. This position would support a massive National Security platform supporting large-scale analytics on various customer data sources. The ideal candidate is passionate about technology and able to learn quickly.

Why Maxar? 

We build advanced algorithms to gain analytic insights from a large range of open source and government data.
We enable machine learning systems, automate workflow, and design and develop custom applications for unique national-security mission.
We operate an end-to-end predictive analytic platform unlike any other within the US Government.
We provide training to expand your skills and challenges to develop them.
Our client’s missions are vital to national security, so we’re mission-first always.
Our work environment is relaxed business casual.
At our core we believe and practice social responsibility.

What would you be doing? 

Contributing to team success by building out and maintaining large-scale customer hosted Openstack platform, enabling massive analytics for platform users.
Analyzing existing and future systems, reviewing security architectures, and developing engineering solutions that integrate information security requirements to proactively manage information protection.
Engineering and deploying network defense countermeasures such as anti-virus, anti-spam, and intrusion detection and prevention system solutions.
Analyzing Information Assurance (IA) security events, including threat model development and resulting security risk analysis of systems.
Reviewing and assessing information security events and logs via sophisticated security information and event manager.

Minimum Requirements:

Must have a current/active TS/SCI and be willing and able to obtain a CI polygraph.
Bachelor's degree in Engineering, Computer Science or related field. 4 additional years of experience may be substituted in lieu of a degree.
5+ years of relevant experience.
Demonstrated expertise in IC policy and able to interact at senior levels to ensure requirements are met while preserving the most feasible security posture.
Experience applying NIST, DOD, and other government standards, policies and regulations (e.g., NIST 800-137, NIST 800-53, 800-37 and 800-39)
Must be able to manage security configs and communicate with others on the platform who are impacted by security decisions/direction.
Must be willing and able to work onsite as needed

Preferred Qualifications:

Experience with management, certifying and accrediting production systems or applications within the US government.
Experience using the fundamentals of network routing and switching and achieving compliance for production software systems on US Government networks, such as SIPRnet and JWICS.
Experience with web application penetration testing identifying architectural design weaknesses from analyzing a web application.
Experience implementing PKI components in a network, application and architecture and authentication capabilities of Windows, UNIX, Linux, Apple and middleware.
Experience with database technologies, architectural reviews, and PCI-Data Security Standard.
Experience producing accurate Configuration records through the life-cycle of the asset.
CompTIA Security+ certification or CISSP certification or the ability to acquire and maintain certification.
Demonstrated expertise in Cloud Security Architecture (specifically AWS service catalog), Implementation, Compliance, to include Authority to Operate (ATO) for Hybrid Cloud hosted infrastructure and applications
Experience with reviewing security scan results and determining the risk and impact of vulnerabilities
Demonstrated experience administering Linux and Windows operating systems in accordance with applicable security controls
Skilled in managing complex regulatory and audit program, focusing on secured cloud capabilities, to include Authorization to Operate (ATO) in multi-tenant environment
Experience configuring and securing systems to achieve compliance with Security requirements and determining the risk/impact of vulnerabilities (e.g., Nessus Scanner, Security Center, Splunk, McAfee EPo Server)
Experience conducting Assessment and Authorization (A&A) using Risk Management Framework (RMF) activities; across all 6 steps.
Experience producing accurate Configuration records through the life-cycle of the asset
Develop weekly ConMon Reports to customer and capture metrics as security control assessments are conducted. Detail findings, provide status, recommended mitigations, metrics, and evidence.
Must be a highly motivated, self-driven team player who can interact well with others and advise/consult with other team members and customers on system security-related issues.

Our salary ranges are market-driven and set to allow for flexibility. Individual pay will be competitive based on a candidate’s unique set of knowledge, skills, and geographic diversity, with earnings potential commensurate with experience. The range for this position is:

$92,000.00 - $154,000.00 annually.

Maxar employees must follow all applicable Maxar policies and COVID-19 requirements as well as those of Maxar customers and third parties. Individual job requirements may vary, and Maxar reserves the right to modify its policies and requirements as it deems appropriate in accordance with applicable law.

Maxar Technologies values diversity in the workplace and is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.