The Cybersecurity System Engineer is responsible for ensuring the highest level of confidentiality, integrity, and availability in Aurora developed unmanned mission systems. This position has the responsibility to lead the assigned team of both internal staff and subcontractors to execute and mature the company’s technical and operational cybersecurity capabilities. This position is expected to be a combination of technical delivery and team leadership. This position will develop cybersecurity plans and implement processes resulting in accredited hardware and software solutions deployed into operational unmanned aerial systems (UAS).
Technical responsibilities include, but are not limited to, requirements and CONOPS development, system design and analysis, and operations support.
Typical duties include:
Providing technical analyses for information assurance (IA) support and integration efforts and performing analyses of authorization and accreditation (A&A) documentation for information security (INFOSEC) product evaluation and related documentation.
Conducting risk assessments and risk mitigation analyses and developing contingency plans.
Developing and maintaining Risk Management Framework (RMF) artifacts
Analyzing the documentation, validation, and accreditation processes necessary to ensure compliance to security and privacy requirements.
Direct interaction with federal government stakeholders and accrediting authorities
Researching mission system standards, platforms and architectures and develop cost-effective, timely recommendations for implementation.
Supporting aircraft and ground system architecture & interface design and capturing target functionality.
Defining, analyzing and reviewing hardware and software requirements to meet defined and anticipated customer needs, system quality, and performance standards.
Required Qualifications and Experience:
B.S. in Computer Science, IT or applicable engineering or science field, Master's degree preferred
5+ years of experience with operational information technology environments, including 3+ years in a DoD environment
5+ years of experience with system and network vulnerability analysis, risk assessment and risk mitigation analysis, security test and evaluation (ST&E), contingency planning, firewall policy, ports, and protocols
Knowledge of Air Force Platform IT (PIT) Cybersecurity concepts and requirements
Demonstrated proficiency in developing and implementing a Cybersecurity plan for a new operational system resulting in an ATO and/or ATC
Knowledge of the DoD Authorization and Accreditation (A&A) process and standards as implemented in the NIST Risk Management Framework (RMF)
Familiarity with the DoD Critical Program Protection (CPI) process
Certifications equivalent to IAT Level II, including Security+ CE or above, or IAM Level II, including CISM, CISSP, or CAP Certification, or IA SAE II
Current Active SECRET, Eligible for TS/SCI
Desired Qualifications and Experience:
Proficiency in using a SysML modeling methods and tools
Network design and implementation including IP addressing, firewall configuration, and multi-level security devices and systems
Operating in a regulated development environment, like CMMI (level 3 or higher) or DO-178.
Unified Ground Control Station or equivalent GCS for 24x7 mission operations.
Experience with Federal Government DIACAP and RMF management systems, such as EITDR, eMASS, and ACAS.
Experience integrating and fielding operational GOTS tools and systems such as DCGS, AIMES, SIRIS, and HBSS.
Ability to meet DoD 8140/8570 Cybersecurity Workforce (CSWF) Certification requirements
Candidate must be able to work within a hangar and enter and exit aircraft and other similar physical environments without restriction.
Aurora Flight Sciences is an Equal Opportunity Employer