Listing Description
RII develops cutting-edge software for the government and military. We use agile development practices and user-centered design to create innovative software solutions for complex real-world problems. We're breaking through the big, slow status quo with transformative technology that fundamentally changes and improves the world.
We are looking for a committed information systems security engineer to help contribute to a common platform utilized to create various software solutions. Looking for someone who can collaborate, share knowledge and ideas, and make meaningful contributions to the team. Get s#it done.
This position requires an active US Secret security clearance.
WHAT YOU WILL BE DOINGWorking closely with software developers and platform engineers to build a secure platformWorking closely with product teams to understand the security needs and priorities for the productAdvocating for and integrating secure development practices into the software development lifecycleWorking closely with DevOps engineers to improve the overall security of the product through the supply chainProvide Information System Security Engineering technical execution of information security related activitiesDefining security requirements and design solutions, providing guidance and implementing direction related to security technologiesApplying Risk Management Framework (RMF) and National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 controls to obtain and/or maintain Authority to Operate for information systemsEnsuring the rigorous application of information security information assurance policies and proceduresProvide practical working knowledge of technically diverse environments and oversight on vulnerability assessments; defining, negotiating, and executing Assessment and Authorization (A&A) eventsConducting cyber security audits and risk assessments to ensure appropriate implementation and compliance of the security postureGenerating and maintaining information security documentation including Systems Security Plans (SSP) and related RMF artifactsScheduling, performing and maintaining records of required information system auditing, patching, maintenance, software/hardware changes, and malware scanning based on evolving threat/vulnerabilities and compliance requirements
WHAT YOU HAVE DONEMinimum 3 years related information systems security engineering experienceMinimum 3 years of hands-on experience with Information Assurance/Cybersecurity architecture, requirements, determination, development, and implementationExperience with Agile software development practices and processesExperience with security features and/or vulnerability of various operating systems as defined by NSA, NIST, DISA (STIGs) and/or USCYBERCOMExperience with network and system security administration, including operating system security configuration and account management best practices for LinuxExperience with Information Assurance (IA) related testing and assessment tools, e.g., Security Content Automation Protocol (SCAP), Security Technical Implementation Guide (STIG) Viewer, etc.Experience with information security tool sets such as anti-virus, security information and event management (SEIM), and/or HIDS/ NIDSSelf-starter requiring limited direction and supervisionExperience implementing DoD and Federal Risk Management Framework, IA Certification and Accreditation Processes, IA controls and developing and maintaining associated certification and accreditation documentationFamiliarization with one or more of the following: Defense Counterintelligence and Security Agency (DCSA) National Industrial Security Program Operations Manual (NISPOM), DoD Joint Special Access Program Implementation Guide for Risk Management Framework (JSIG RMF), Intelligence Community Directive 503 (ICD-503), or similar guidance
EVEN BETTERDoDI 8570.01-M IAM/IASAE Compliant CertificationSystem testing, integration, and evaluation methods in relation to RMF assessment methodologies and processesStrong understanding and application of engineering processes, concepts, and information security engineering principles in NIST SP 800-161 vol1Prior information system administration or information systems engineering experiencePrior software development experienceAt RII, we believe that diversity in our workforce is critical to our success. We strive to hire great people from a wide variety of backgrounds, not just because it’s the right thing to do, but because it makes us stronger. We work to help your intellectual passions and creativity thrive. It’s one of our core values: Let your geek flag fly.
We also offer all employees comprehensive benefits including: flexible work schedules, health insurance coverage, paid time off, 401k with a company match, paid parental leave, access to wellness programs and much more. You get this all from day one, and all paid for by RII.
It’s all part of another of our core values: Stay human. It’s why our comfortable and colorful offices such as our headquarters, include a community game room, pantry, massage chair, and an escape room, among other amenities. It’s why we have a community manager and regular community events.
It’s also why, during the current pandemic, most of us aren’t actually in our lovely office. We’re all working fully remote where possible, with safety controls for those who do have to be on site. RII is committed to not overwhelming our healthcare system, preventing infection for those most at risk, reducing the impact on our communities, and keeping our employees working.
Research Innovations, Inc. is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender, gender identity or expression, national origin, genetics, disability status, protected veteran status, age, or any other characteristic protected by state, federal or local law.
#LI-AC1
Listing Details
-
Citizenship:
Not Provided
-
Incentives:
Not Provided
-
Education:
Not Provided
-
Travel:
Not Provided
-
Telework:
Not Provided