Advanced Information Assurance Engineer

Requires a Bachelor’s degree in Engineering, or a related Science or Mathematics field. Also requires 5+ years of job-related experience, or a Master's degree plus 3 years of job-related experience.

CLEARANCE REQUIREMENTS: Department of Defense Top Secret security clearance is required at time of hire. Applicants selected will be subject to a U.S. Government security investigation and must meet eligibility requirements for access to classified information. Due to the nature of work performed within our facilities, U.S. citizenship is required.

Specific System Security Engineering Technical Skills

• Supports cyber security requirements analysis, security requirements definition, survivability/Cyber resilience analysis, system security design, security architecture generation, security trade studies, and security verification and validation with little or no supervision. (ex. Cybersecurity Architecture Analysis Report – AAR)
• Supports customer security requirements analysis, develops system security requirements and defines allocations to lower levels (subsystem, elements and components) (ex. Security Requirements Traceability Matrix – SRTM, Security Control Traceability Matrix – SCTM)
• Understands and provides cybersecurity inputs to MBSE models and Digital Engineering (DE)
• Supports assessments and mitigations of system security threats and risks throughout the program life cycle to develop cyber survivable systems – familiar with Mission Based Cybersecurity Risk Assessment (MBCRA) approaches such as Mission Risk Assessment Process – Cyber (MRAP-C) and Cyber Table Top (CTTs) exercises
• Researches and analyzes data, such as vendor products, COTS components, GFE/CFE, specifications, and manuals to determine security of design – familiarity with Trusted Systems and Networks (TSN) analysis and Cybersecurity – Supply Chain Risk Management desirable
• Experience with DevSecOps
• CISSP or equivalent certification

General Technical Skills

• Strong understanding of cyber security technology and trends
• Recognizes various security architectural patterns, applies them appropriately, understands strengths/weaknesses within those security architectures
• Effectively selects and implements the appropriate cyber standards, processes, procedures, and tools throughout the system development life cycle to support the generation of the security engineering products
• Support development of required security documentation, including items such as security plans, risk assessments and mitigation reports, and security tests plans and procedures in compliance with the IA policy
• Strong understanding of cyber security guidance such as Risk Management Framework (RMF) 800-53, STIGs, Cyber Survivability Endorsement Implementation Guide, and other government security specifications and guidelines. Experience performing vulnerability and code analysis scans in DevSecOps environment (ex. Nessus, Static Code Analysis – SCA, STIGs).
• Supports the development of the RMF body of evidence for security requirements including items such as system risk assessments and mitigation reports, security plans (SP), security testing plans and procedures, Security Control Traceability Matrices (SCTM), and System Impact Analyses.
• Supports the Assessment and Authorization (A&A) activities and the generation of the cyber package for the program leading to granting of the Authority To Operate (ATO)
• Supports the execution of the security testing and evaluation to ensure the correct implementation of security requirements (ex. Scanning with tools for static and dynamic code analysis. Penetration Testing)

Personal skills

• Excellent written and verbal communications skills
• Effective ability in communicating issues, impacts, and corrective actions as they affect the cyber design and implementation
• Excellent ability in reporting relevant cyber systems engineering design topics
• Effective communication and coordination with project leaders, the customer program leadership, and professionals within the Engineering department and with project teams
• Creative thinker, good multi-tasker

General Dynamics Mission Systems (GDMS) engineers a diverse portfolio of high technology solutions, products and services that enable customers to successfully execute missions across all domains of operation. With a global team of 12,000+ top professionals, we partner with the best in industry to expand the bounds of innovation in the defense and scientific arenas. Given the nature of our work and who we are, we value trust, honesty, alignment and transparency. We offer highly competitive benefits and pride ourselves in being a great place to work with a shared sense of purpose. You will also enjoy a flexible work environment where contributions are recognized and rewarded. If who we are and what we do resonates with you, we invite you to join our high-performance team!

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans