Information Systems Security Engineer

Information Systems Security Engineer

CAE Vision: Our vision is to be the worldwide partner of choice in defense and security, and civil aviation by revolutionizing our customers' training and critical operations with digitally immersive solutions to elevate safety, efficiency, and readiness.

CAE Defense & Security Mission: CAE's Defense and Security business unit focuses on helping prepare military customers to develop and maintain the highest levels of mission readiness.

CAE Values: Empowerment, Innovation, Excellence, Integrity, and OneCAE make us who we are and we strive to make a difference in the world while helping each other succeed.

What We Have to Offer:

• Comprehensive and competitive benefits package and flexibility that promotes work-life balance
• A work environment where all employees are valued, respected, and safe
• Freedom to succeed by enabling team members to deliver, take initiatives, and make decisions
• Recognition, professional development, advancement, and having fun!

Summary

The Information Systems Security Engineer (ISSE) will provide cybersecurity subject matter expertise with government security procedures and policies and ensure compliance and quality control across multiple architectures and government systems.

Essential Duties and Responsibilities

• Operate as an Information Systems Security Engineer (ISSE) installing, configuring, and maintaining cyber tools sets and server systems connected to networks across multiple classification domains.
• Coordinate with internal/external customers to understand requirements and build security policies that allow for least privilege access.
• Develop, implement, and document policies for Endpoint Threat Response, Endpoint Firewalls, Host-based Intrusion Detection/Prevention Systems, Data Loss Prevention, File and Removable Media Protection.
• Troubleshoot website rendering issues for traffic that is running through a web proxy.
• Work with external supply chain and services providers to evaluate integration of products and services with operational environment.
• Demonstrated ability to document equipment and software configurations, as well as processes and procedures.
• Work with system/network administrators to conduct vulnerability scanning using latest DoD security tools (Nessus Security Center).
• Collaborate with network administrators to develop and maintain DISA compliant Ports Protocols Services Management (PPSM) data for all systems assigned.
• Collaborate with configurations management to maintain authorized hardware/software lists across enclaves.
• Work as an integrated team member in a highly dynamic, operationally sensitive environment providing mission critical data to the war fighter.
• Analyze security risks, threats, and vulnerabilities from multiple sources and recommend strategies to leadership to prevent security exposures and detect intruders.
• Support Configuration Control Board (CCB) / review board processes for stakeholders, including planning, minutes, and actions.
• Provide support to certification and accreditation implementing the Risk Management Framework (RMF) across multiple classification domains and update status in the Enterprise Mission Assurance Support Service (eMASS) system.
• Create, update, and maintain artifacts for systems accreditation within Enterprise Mission Assurance Support Service (eMASS).
• Perform host-based security monitoring utilizing McAfee Enterprise Policy Orchestra (McAfee ePO).
• Document cybersecurity tactics, techniques, and procedures; maintaining document repository.
• Collaborate with network administrators to develop and maintain DISA compliant Ports Protocols Services Management (PPSM) data for all systems assigned.
• Collaborate with configurations management to develop and maintain authorized hardware/software lists for all systems assigned.
• Work as an integrated team member in a highly dynamic, operationally sensitive environment providing mission critical data to the war fighter.
• Communicate and coordinate across the Cybersecurity team for cyber-related issues.
• Analyze security risks, threats, and vulnerabilities from multiple sources and recommend strategies to leadership to prevent security exposures and detect intruders.
• Create plans to implement solutions and follow them through to completion keeping all stakeholders informed.
• Review, maintain, and report compliancy of Cybersecurity Task/Operational Orders with appropriate governing entities.
• Stay current with Government and industry trends, laws, and standards and recommend methods to meet requirements.
• Analyze and define information security requirements for current and future internal and external data connections and maintain documentation for those connections in a central repository.
• Coordinate with external cybersecurity teams for vulnerability testing of the MMC cybersecurity posture.
• Perform and document Account Access Authorization and Control for all information systems assigned.

Qualifications and Education Requirements:

• Education: AAS/BA/BS in a disciplined Engineering Study.
• Certifications: CompTIA Security+ or DOD 8570.01-M IAM-1 or higher certification TS Clearance and/SCI Eligible.
• 2-7 Years experience as an ISSE.
• DISA Endpoint Security Solutions (ESS) Administrator 201/301 ePO 5.10 training
• Clearance required.
• Ability to perform multiple projects with dynamic tasking and follow-through from beginning to end on assigned tasks.
• Ability to work as an...

CAE is firmly committed to ensuring a positive and professional working environment in which all people are treated with dignity and respect. We aim to provide a fair and consistent method for filling job openings in support of equality of opportunity and cultural diversity within the company.