Airbus Defense and Space
  • 14-Jul-2022 to 31-Dec-2022 (EST)
  • AIRBUS U.S. Space & Defense, Inc.
  • Arlington, VA, USA
  • 115000-145000 per year
  • Salary
  • Full Time

Airbus U.S. Space & Defense, Inc offers advanced solutions to meet the most complex U.S. defense, security, space, and intelligence requirements. Celebrating over 50 years in the US, we remain a trusted government partner, leveraging world-class satellite, laser communication, rotor and fixed wing solutions to help our national security, defense and space focused customers meet their missions.


Airbus U.S. looks to employ a commitment driven team, dedicated to enabling our customer's mission success. We are committed to maintaining a diverse and inclusive work environment and a welcoming and engaging staff. With competitive compensation and superior employee benefits, as well as a commitment to fostering individual career growth, Airbus U.S. is the place where top talent wants to work.


Position Summary:

The Product Cyber Systems Engineer will work on the Cyber security testing requirements of our Space products including space vehicles and other imbedded systems and software. The position requires experience of CNSSI 1253 Risk Management Framework, and Development Security operations. This position requires extensive experience of RMF implementation and defensive Cyber operations


Position Responsibilities:


Risk Management Framework (RMF) Assessments: 70%

  • Production of System Security Plan (SSP). These artifacts include - System Security Plan (SSP), Risk Assessment Report (RAR), Security Controls Traceability Matrix, and Plans of Actions & Milestones (POA&Ms). Familiarity with the NIST 800-53 controls (as applied through CNSSI-1253).
  • Working as an individual contributor representing the Cyber team within the Space engineering team to architect, implement, and execute Risk Management Framework (RMF) CyberSecurity, CyberResilience, CyberSurvivability requirements of: satellite BUS systems, onboard computers and flight software.
  • In addition to implementing and maintaining RMF processes and procedures, the candidate must have experience executing Standard Operating Procedures associated with someone in the ISSO role.
  • All candidates must be capable of supporting cybersecurity assessment events where they work closely with systems administrators and other cyber personnel and engineering personnel (ISSOs, ISSEs, ISSMs, and SCA) to satisfactorily demonstrate that all applicable security controls are implemented within the system boundary.
  • As a cyber systems engineer, performing Attack Surface Analysis (ASA) and preparing Security Impact Analysis for changes to the system is required as an input to the Change Control process.
  • Contributing to the implementation and verification of specific security components by performing systems engineering, integration, and test (SEIT) activities for security-critical components, such as controlled interfaces and onboard computers.
  • Deploying security infrastructure and services in computing clouds and/or highly virtualized environments.
  • Performing system vulnerability scanning, remediation, and patch management activities on Windows and RedHat Linux operating systems and various COTS applications, including those within virtualized and/or cloud environments.
  • Documenting Standard Operating Procedures, and when needed, performing (or contributing to) software patch installation, other flaw remediation, antivirus updates, and continuous monitoring activities.
  • Ensuring systems are operated, maintained, and disposed of in accordance with security policies.

Assessments and Documentation: 20%

  • Experience preparing Risk Management Framework (RMF) artifacts for National Security Systems (NSS) is a key job activity.
  • Familiarity with the NIST 800-53 controls (as applied through CNSSI-1253) is essential to this task.
  • Lead or oversee engineering documentation for RMF and DEV SEC OPS practices and procedures
  • Create thorough documentation records of design specifications and instructional manuals as necessary.

Additional Responsibilities as Assigned: 10%

Qualified Experience / Skills / Training:


Education:

  • Bachelor's Degree in stem field (Cyber security, Electrical engineering, Aeronautical engineering, Aerospace Engineering).
  • 5 years Cybersecurity experience in the industry may substitute for degree.

Experience Required:

    • 3 years of cybersecurity experience within the defense aerospace industry.
    • Demonstrated ability to communicate with a variety of stakeholders ranging from technical staff up to senior program managers
    • Current CISSP or equivalent IASAE certification OR DEGREE IN CYBER
    • Current DoD 8570 IAT Level II certification (such as, Security+).
  • Experience with DISA Security Technical Implementation Guide (STIG) implementation, as well as documentation of deviations and mitigations.
  • Experience operating systems/networks to use, or scanning, remediating, mitigating, and reporting cybersecurity vulnerabilities discovered through use of audit reduction tools and/or or Qualys tool
  • Experience implementing the RMF process from system categorization through continuous monitoring.
  • Excellent technical document preparation skills (SSP, SOPs, POAMs) and related artifacts as required to satisfy security controls across all families.
  • Experience in a Systems Engineering role with responsibilities in the planning, designing, implementation, testing, and delivery of a system with Information Assurance requirements and testing of cybersecurity controls.
  • Experience in a Systems Engineering role during the successful execution of the Risk Management Framework.

Experience Preferred:

  • CobaltStrike
  • Operating Systems: Linux and Windows
  • Red Team Tactics and Methodologies
  • Programming: C++, Python, Bash, PowerShell, Rust, or other programming language

Licensure/Certifications (One or more):

  • OSCP
  • CISSP
  • CEH
  • Security +
  • NIST RMF
  • DISSA RMF

Technical Systems Proficiency:

  • Familiar with Agile methodologies
  • Technical writing skill

Travel Required:

  • 25% Domestic and International

Eligibility:

  • US Citizenship

Clearance:

  • Ability to obtain and maintain a US government issued clearance

Decision Making, Complexity:. The Product Cyber Systems Engineer must be someone who possesses excellent technical ability, excellent communications skills, and the ability to make critical decisions related to the Cyber testing of space products.. The decisions often need to be made quickly and after consultations with business stakeholders who may be in the US, or in Europe.


Job Dimensions, Contributions to Success:

Nature of Contacts:

Role includes involved communication with internal and external parties on a regular basis.

Equal Opportunity: Airbus U.S. Space & Defense, Inc. is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. Airbus U.S. Space & Defense, Inc. is also committed to compliance with all fair employment practices regarding citizenship and immigration status.


As a leader in our field, Airbus U.S. Space & Defense, Inc. provides relocation assistance for qualified positions and a comprehensive compensation and benefits package.


As a matter of policy, Airbus U.S. Space & Defense, Inc. does not sponsor visas for US positions unless specified. Only applicants with current work authorization will be considered.


Airbus U.S. Space & Defense, Inc. does not offer tenured or guaranteed employment. Employment with Airbus U.S. Space & Defense, Inc. is at will, meaning either the company or the employee can terminate the employment relationship at any time, with or without cause, with or without notice.



Company Website: www.airbusus.com

Airbus Defense and Space
  • Apply Now

  • * Fields Are Required

    What is your full name?

    How can we contact you?

  • Sign Up For Job Alerts!

  • Share This Page
  • Facebook Twitter LinkedIn Email
.

logo Privacy Notice Cookie Settings Cookie Policy
logo commercial aircraft helicopters defence space company newsroom