Today
Top Secret/SCI
Unspecified
Unspecified
IT - Security
Colorado Springs (On-Site/Office)
Cyber Systems Security Engineer
Secret Clearance (with TS/SCI eligibility)
DoD Customer
Peterson SFB, Colorado Springs, Colorado
Marathon TS is seeking a Secret Cleared Cyber Systems Security Engineer with 7+ years and an advanced degree or 9+ years and bachelors degree of related professional work experience to support our long term contract with a DoD customer onsite in Colorado Spring, CO.
Job Duties:
Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as "protected status ").
Secret Clearance (with TS/SCI eligibility)
DoD Customer
Peterson SFB, Colorado Springs, Colorado
Marathon TS is seeking a Secret Cleared Cyber Systems Security Engineer with 7+ years and an advanced degree or 9+ years and bachelors degree of related professional work experience to support our long term contract with a DoD customer onsite in Colorado Spring, CO.
Job Duties:
- Provide Cybersecurity Systems Engineering (CSSE) knowledge and expertise for the program MILSATCOM systems to:
- Maintain awareness of current and emerging Cyber threats
- Assist with the analysis of Cyber threats and help determine impact to the systems
- Evaluate how the systems can mitigate the Cyber threats and then develop Courses of Action (COAs) to mitigate threats and prioritized risks
- Develop procedures to counter / mitigate Cyber threats to the Ground Systems, Space Vehicle and payloads while maintaining the mission the maximum extent possible
- Assist with the development of recovery plans to return the systems to operation
- Apply systems engineering and cyber expertise for the development and implementation of mission recovery support Tactics Techniques and Procedures (TTPs) when / if Cyber incidents occur
- Assess software and hardware behaviors due to systems' modifications and any related, expected system impacts.
- Supporting and implementing intrusion detection solutions and / or systems into the Protected EHF SATCOM system baselines that includes, but is not limited to, host-based intrusion detection systems (HIDS), network intrusion detection (NIDS) and / or intrusion protection systems (IPS) where not covered or inherited by DoD provided defensive cyber operations (DCO).
- Analyzing, reporting, and summarizing DISA Endpoint Security Solution (ESS) data
- Perform primary operational point of contact duties for the program's cybersecurity defense suite of tools, known as Cybersecurity Subsystem (CSS)
- Manage CSS accounts, accesses, and monitoring dashboards
- Provide Tier 1 troubleshooting for CSS tools (Splunk, DISA ACAS, DISA ESS)
- Provide CSSE support and expertise by:
- Preparing, maintaining and submitting the RMF-artifact delivery schedule (which includes identified RMF package delivery dates), as provided in the prime contractor format, that captures the status of the submission frequency of the identified RMF artifacts per system sustainment cybersecurity-related activities being performed in accordance with this contract
- Creating and updating information system artifacts, such as hardware/software baselines, Ports, Protocols, and Services Management (PPSM), network diagrams, etc.
- Ensuring information systems meet Risk Management Framework (RMF) standards by directly communicating with the respective Information Systems Security Officer (ISSO)/Information Systems Security Manager (ISSM)
- Performing network vulnerability scans in support of Government validation checks for the program's information systems
- Analyzing, summarizing, and prioritizing ACAS scan vulnerabilities
- Routinely review and work with fellow program CSSEs and the gov't ISSO and ISSM to prioritize cyber findings and engineering remediations
- Support the baselining of STIG scans for Operating Systems, COTS products, and other systems/services
- Support ongoing security accreditation engineering artifact update activities.
- Delivering fully tested vulnerability patch and virus signature releases for each Core O&S system every 60 calendar days (6 times annually) as approved by the Government before installation on all applicable Core O&S systems
- In addition to delivering patches and virus signature updates, support program in delivery of approximately 4 fully tested emergency vulnerability patch and virus signature releases as needed and prioritized by the Government (SSC/ECPM)
- Supporting updating and/or development of Security Assessment Plans (SAP)
- Providing technical engineering and cyber support for all required cybersecurity technical meetings.
Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as "protected status ").
group id: 10362312
