Job Title: Information Security Systems Engineer Job Code: 19103 Job Location: Colorado Springs, CO Job Description: Applies current systems security engineering methods, practices and technologies to the architecture, design, development, evaluation and integration of systems and networks to maintain system security. Works closely with Government customers to ensure that the security protection needs, concerns and requirements are defined and implemented with appropriate fidelity and rigor, early and in a sustainable manner throughout the life cycle of system that will allow for the security authorization of the system of interest. Works with systems developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database products. Uses methods such as encryption technology, vulnerability analysis and security management. Responsible for integration of multiple methods into a cohesive system security perimeter and environment and the policies and procedures necessary to monitor and maintain such an environment. Will prepare Certification and Accreditation documentation, using multiple standards under RMF and derivitive processes (DOD 8510, JSIG, ICD-503, CNSSI 1253), to achieve security authorization of supported systems. Represents program security needs, concerns and requirements at customer meetings. Essential Functions: Experience in Assessment & Authorization Vulnerability Management, ensuring systems meet security compliance standards and identifying potential vulnerabilities through regular assessments. Proficient in Cybersecurity Product Development, contributing to the design and implementation of security features within product offerings. Skilled in conducting comprehensive Cybersecurity Assessments to evaluate the security posture of information systems and recommend enhancements. Knowledgeable in Data Protection & Privacy, implementing measures to safeguard sensitive information and ensure compliance with privacy regulations. Demonstrated ability in Information & Cybersecurity Management, overseeing cybersecurity operations and aligning them with business objectives. Expertise in Network Configuration & Security, configuring networks to enforce security policies and protect against unauthorized access. Advanced understanding of Application Security principles, securing applications against a wide range of cyber threats. Proficient with the NIST Risk Management Framework (RMF), applying its guidelines to manage risks and ensure system resilience. Proven Team Leadership & Training capabilities, leading cybersecurity teams and providing training to enhance team competencies. Experience in IT Risk Escalation & Resolution, effectively communicating and addressing IT security risks with stakeholders. Ability to drive Security Architecture Improvements, evaluating and upgrading security architectures to address emerging threats and technologies. Strong Stakeholder Engagement skills, collaborating with various stakeholders to ensure security considerations are integrated into business processes. Proficient in Continuous Integration & Deployment practices within a DevSecOps framework, automating security checks and balances in the CI/CD pipeline. Capable of Cyber Threat Mitigation, employing strategies and tools to detect, prevent, and respond to cyber incidents. Adherence to Product Roadmap guidelines, ensuring security milestones align with product development timelines. Commitment to fostering a Security-Centric Culture, promoting security awareness and best practices throughout the organization. Experience with Agile Methodologies, applying agile principles to cybersecurity initiatives for improved flexibility and responsiveness. Support for Enterprise Architecture, contributing to the development and maintenance of an overarching IT architecture framework. Ability to interpret and apply IT Architectural Guidelines, ensuring cybersecurity solutions are consistent with organizational standards. Must have the ability to work onsite when required. Remote arrangements may be made with explicit program approval. Qualifications: Education: Bachelor’s Degree and minimum 9 years of prior relevant experience, or Graduate Degree and a minimum of 7 years of prior related experience, or In lieu of a degree, minimum of 13 years of prior related experience. Secret clearance required DOD 8570.01M IAT-3 or IASAE-2 certification Preferred Additional Skills: Experience with A&A package processing in eMASS and Xacta. Experience in DoD software selection and approval processes for COTS, GOTS and FOSS. Experience in configuration and use of cyber defense and vulnerability assessment tools such as ACAS and SCC. Experience in the application of DISA SRGs and STIGs. Experience in the content development and administration of SEIM/audit reduction tools (e.g., Splunk). DOD 8570.01M IASAE-3 certification is desired. Strong understanding of engineering processes, concepts and information security systems engineering principles (NIST SP 800-160 Vol1). System test and evaluation methods and RMF assessment methodology & process. Experience in Cyber Defense technologies. Understanding of system vulnerabilities and exploitation. Top Secret clearance is highly desired. In compliance with pay transparency requirements, the salary range for this role is $106,500 - $197,500. This is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. L3Harris also offers a variety of benefits, including health and disability insurance, 401(k) match, flexible spending accounts, EAP, education assistance, parental leave, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, schedule type, and the applicability of collective bargaining agreements.