Cyber Security Systems Engineer

Job Description

POSITION SUMMARY:

Metis Technology Solutions, Inc. is an advanced engineering services company supporting aviation and space systems development and operations, including spaceflight systems, ground systems, modeling and simulation systems, research facility development and operations. Bring your expertise to Metis Technology Solutions, a highly innovative small business providing high end solutions to the US Space Force Space Systems Command, NASA and other customers where you can make a difference now and into the future. Metis is recruiting for a position to support Network hardware & software expertise on a subcontract position in Colorado Springs to support the Combined Orbital Operations Logistics and Resiliency contract.

Work to be performed at Schriever SFB, Colorado Springs, Colorado.

As a Cyber Security Systems Engineer:

Provide Cybersecurity Systems Engineering (CSSE) knowledge and expertise for the COOLR MILSATCOM systems to:

Maintain awareness of current and emerging Cyber threats

Assist with the analysis of Cyber threats and help determine impact to the systems

Evaluate how the systems can mitigate the Cyber threats and then develop Courses of Action (COAs) to mitigate threats and prioritized risks

Develop procedures to counter / mitigate Cyber threats to the Ground Systems, Space Vehicle and payloads while maintaining the mission the maximum extent possible

Assist with the development of recovery plans to return the systems to operation

Apply systems engineering and cyber expertise for the development and implementation of mission recovery support Tactics Techniques and Procedures (TTPs) when / if Cyber incidents occur

Assess software and hardware behaviors due to systems’ modifications and any related, expected system impacts.

Supporting and implementing intrusion detection solutions and / or systems into the Protected EHF SATCOM system baselines that includes, but is not limited to, host-based intrusion detection systems (HIDS), network intrusion detection (NIDS) and / or intrusion protection systems (IPS) where not covered or inherited by DoD provided defensive cyber operations (DCO).

Analyzing, reporting, and summarizing DISA Endpoint Security Solution (ESS) data

Perform primary operational point of contact duties for the program’s cybersecurity defense suite of tools, known as Cybersecurity Subsystem (CSS)

Manage CSS accounts, accesses, and monitoring dashboards

Provide Tier 1 troubleshooting for CSS tools (Splunk, DISA ACAS, DISA ESS)

Provide CSSE support and expertise by:

Preparing, maintaining and submitting the RMF-artifact delivery schedule (which includes identified RMF package delivery dates), as provided in the prime contractor format, that captures the status of the submission frequency of the identified RMF artifacts per system sustainment cybersecurity-related activities being performed in accordance with this contract

Creating and updating information system artifacts, such as hardware/software baselines, Ports, Protocols, and Services Management (PPSM), network diagrams, etc.

Ensuring information systems meet Risk Management Framework (RMF) standards by directly communicating with the respective Information Systems Security Officer (ISSO)/Information Systems Security Manager (ISSM)

Performing network vulnerability scans in support of Government validation checks for the program’s information systems

Analyzing, summarizing, and prioritizing ACAS scan vulnerabilities

Routinely review and work with fellow LM CSSEs and the gov’t ISSO and ISSM to prioritize cyber findings and engineering remediations

Support the baselining of STIG scans for Operating Systems, COTS products, and other systems/services

Support ongoing security accreditation engineering artifact update activities.

Delivering fully tested vulnerability patch and virus signature releases for each Core O&S system every 60 calendar days (6 times annually) as approved by the Government before installation on all applicable Core O&S systems

In addition to delivering patches and virus signature updates, support LM in delivery of approximately 4 fully tested emergency vulnerability patch and virus signature releases as needed and prioritized by the Government (SSC/ECPM)

Supporting updating and/or development of Security Assessment Plans (SAP)

Providing technical engineering and cyber support for all required cybersecurity technical meetings.

Onsite Full-time: The work associated with this position will be performed onsite

MINIMUM QUALIFICATIONS:

Education:

Advanced degree and 7+ years experience or bachelors with 9+ years experience or equivalent;

Experience

Strong understanding and application of cybersecurity practices (STIG compliance, system accreditation, etc.).

Familiarity with Agile development methodologies and principles.

Exceptional troubleshooting skills.

LOCATION SPECIFIC REQUIRMENTS: Schriever Space Force Base (PSFB), Colorado Springs, CO

SECURITY CLEARANCE: Active DOD SECRET clearance, ability to obtain TS/SCI Clearance

Must be a U.S. Citizen to possess a security clearance.

EEOE including Vets and Disability

Salary Range:

The annual base salary range for this position in Colorado is $96,500 - $160,000 depending on experience . Please note that the salary information is a general guideline only. Metis considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/ training, key skills as well as market and business considerations when extending an offer.

Full-time