SECURITY CLEARANCE:

DoD Clearance: TS/SCI
Applied Signal Technology (AST) is seeking an Information Systems Security Engineer who strives for excellence and has a passion to be part of a team that strengthens our nation and improves the security of our world. AST provides trusted strategic and tactical SIGINT solutions that secure the interests of the U.S. and its partners. AST’s work in areas such as high-capacity broadband communications, signal processing and analysis, tactical SIGINT, and wireless communications continually challenges our extraordinary engineers to resolve problems and make the world a safer place. AST’s work environment is passionate, highly collaborative and provides engineers the freedom to strengthen and expand their skills, explore new and creative ideas, and work closely with our nation’s finest service members all while embracing integrity, innovation, and balance of work-life.
Our Cybersecurity team consistently achieves Approval to Operate (ATO) under JSIG, DAAPM, and ICD 503 standards. To embed security earlier into the development lifecycle, we seek an Information Systems Security Engineer (ISSE) who will closely collaborate with system architects, software engineers, and ISSMs. ISSEs collaborate closely with security and product teams, providing the security implementation of technologies and traditional networks designed to operate securely in sensitive contexts. Serving as the technical backbone for standardizing secure product and network deployments, ISSEs bring extensive expertise in Information Technology and the Risk Management Framework (RMF).
The ideal candidate combines a solid background in software or systems engineering with practical experience in Continuous Integration/Continuous Deployment (CI/CD) processes and has transitioned into an information systems security role.
This is an ONSITE position at our San Jose, CA location. To find out more about AST, please click the following link - Applied Signal Technology: WHO WE ARE

QUALIFICATIONS YOU MUST HAVE:

• Typically requires a degree in Science, Technology, Engineering or Mathematics (STEM), information technology and a minimum of 5 years of prior relevant experience.
• 5 years of direct hands-on experience with Linux/Windows system builds, networking, or security architecture.
• 3 years of direct experience in Risk Management Framework (RMF), Joint SAP Implementation Guide, or ICD 503 processes.
• Knowledge in Infrastructure-as-Code and scripting technologies such as Ansible, Terraform, PowerShell, or Bash.
• Familiarity with vulnerability scanning tools, STIG compliance, Security Content Automation Protocol (SCAP), and security event information management (SIEM).
• Certified at DoD 8570/8140 IAM/IAT Level I or equivalent (Sec+, etc.) or ability to achieve certification within six months.
• Active and transferable TS/SCI U.S. government issued security clearance is required prior to start date with the ability to obtain polygraph after start.

QUALIFICATIONS WE PREFER:

• Master’s degree in Cybersecurity Engineering, Systems Engineering, or related technical field
• Knowledge of Kubernetes and container orchestration security in disconnected environments.
• Prior appointment as ISSE or IASAE, in accordance with DoD 8510.01.
• Active engagement in DevSecOps methodologies
• CASP+ CE CISSP (or Associate) CSSLP certification.

POSITION ROLE TYPE:

Onsite
U.S. Citizen, U.S. Person, or Immigration Status Requirements:
Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance

WHAT YOU WILL DO:

• You will provide critical expertise in documenting security controls to streamline administrative processes and reduce costs associated with deploying products operationally.
• You will partner closely with program and security teams to prepare and manage security documentation and artifacts required for classified deployments.
• You will translate commercial technology standards into solutions suitable for classified, air-gapped environments (key responsibility)
• You will collaborate with Information System Owners to gather stakeholder requirements and deliver complex technical solutions that fulfill contractual obligations.
• You will tailor and allocate NIST 800-53 security controls, identifying applicable measures for various network environments and overseeing the implementation of Continuous Monitoring programs.
• You will define, document and conduct comprehensive security scans on accredited products and systems.
• You will shape, scope, and oversee the development of compliance features ensuring products meet all necessary security standards and regulations.
• Travel up to 10%