The Security Services Department's overall mission is to ensure a safe and secure environment and protect MIT Lincoln Laboratory at all facilities in which staff members perform their mission of research and development. To accomplish this mission, this department formulates and implements policies, plans, and actions designed to protect facilities against threats of vandalism, accidental destruction, and sabotage; and safeguards personnel, classified and unclassified information systems, personal identifiable information, property, and other assets from exploitation and recruitment by foreign intelligence agencies.
Information System Security Engineer – ITS Level III
The Information Systems Security Engineer (ISSE) - ITS Level III will provide specialized information security support to several independent Laboratory research groups and serve as the primary integrator working with a multitude of strategic cybersecurity projects and initiatives. The successful candidate will work independently and as a team member, and must be a quick learner, self-motivated, reliable, and able to balance multiple tasks simultaneously. Candidate must have strong interpersonal skills and be able to manage challenging situations in a professional manner. Candidate must possess an in-depth knowledge of information security principles and policies to include the Risk Management Framework (RMF) as presented by the National Institute of Standards and Technology (NIST), Joint Special Access Program (SAP) Implementation Guide (JSIG), Intelligence Community Directive 503 (ICD-503), and all applicable Security Technical Implementation Guides (STIGs). Candidate must have very strong technical skills and be able to respond to off-hours emergencies as needed. Position requires some local and overnight travel.
- Primary integrator for special programs cybersecurity initiatives and projects
- Analyze and offer solutions to technical challenges of core information security operations and processes across multiple sponsor classified operating environments
- Assist in the securitydesign and configuration of classified systems and networks in a variety of traditional and virtual environments including Linux, Unix, Sun, Mac, and Windows.
- Integrate, test, and configure Free and Open Software (FOSS), Commercial-off-the-Shelf (COTS), Government-off-the-Shelf (GOTS), and custom software
- Conduct technical analysis and formulate solutions for complex infrastructure and integration challenges
- Provide security direction to design and development teams, monitor progress and productivity through the use of metrics
- Assist in developing System Security Plans (SSPs) and associated artifacts such as the Plan of Action & Milestones (POA&M), Risk Assessment Report, and Continuous Monitoring Strategy
- Apply Protected Distribution System (PDS) requirements and TEMPEST concepts to existing and planned infrastructure.
- Conduct network, system, and application vulnerability scanning, configuration assessment, and remediation.
- Perform information security policy gap analysis and formulate corrective actions.
- Assist ISSM team as needed with compliance audits, system authorization, sanitization, and incident response.
- Assist Information Security Manager in performing oversight of special programs information security operations
- Bachelor's degree in Computer Science, Information Technology, Computer Information Systems, or relevant work experience or related field desired.
- A minimum of 10 years of IT securityexperience in DoD IndustrialSecurity is strongly desired, preferably in a compartmented program environment.
- Technical experience and skills, course work completed toward a degree, and industry IT certifications may be considered substitutes for education and DoD securityexperience.
- Active participation and knowledge of Risk Management Framework (RMF), JSIG, ICD 503, NIST SP 800-53 and otherassociated NIST publications is desired
- Technical experience and skills in securing multiple operating systems such as Windows Server and clients, Linux, Solaris, and virtualization technologies.
- Experience and skill developing and integrating various sized network environments.
- Experience utilizing various networkinfrastructure products such as routers and switches.
- Experience developing and integrating Video teleconferencing and VOIP equipment.
- Experience configuring and integrating Firewall/VPN equipment.
- Experience developing and integrating Data Loss Prevention strategies utilizing Endpoint Security solutions.
- Ability to achieve DoD 8570 IAM Level III Baseline Certification within 6 months of appointment; preferably candidate possesses ISC2 CISSP.
- Demonstrated capabilities in presenting ideas written and orally within a cross-functional environment required.
- Prior experience working in a collaborative team environment desired.
- Prior experience working with classified government networks is desired.
- The successful candidate will be subject to pre-employment investigation and must meet all eligibility requirements for access to classified information.
- The ability to obtain and maintain a government (DoD) security clearance is required.
MIT Lincoln Laboratory is an Equal Employment Opportunity (EEO) employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, veteran status, disability status, or genetic information; U.S. citizenship is required.