System Security Engineer Job Description
System Security Engineer Duties & Responsibilities
To write an effective system security engineer job description, begin by listing detailed duties, responsibilities and expectations. We have included system security engineer job description templates that you can modify and use.
Sample responsibilities for this position include:
System Security Engineer Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for System Security Engineer
List any licenses or certifications required by the position: CISSP, PKI, SANS, II, CSR, IAT, CPP, CE, CISM, CISA
Education for System Security Engineer
Typically a job would require a certain level of education.
Employers hiring for the system security engineer job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Technical, Education, Information Systems, Information Security, Science, Mathematics, Computer Engineering, Technology
Skills for System Security Engineer
Desired skills for system security engineer include:
Desired experience for system security engineer includes:
System Security Engineer Examples
System Security Engineer Job Description
- Manage security related technical documentation including design documents, test plans, project plans, procedures, incident reports and troubleshooting guides
- Manage/Conduct ongoing testing to verify correct systems operation with Operating System patches, service packs, IAVA, Security Cert notifications and version releases
- Provides technical and functional on-site support to Energy Applications customers providing
- Maintains and manages 200+ seat call center systems, including quality management, work force management, predictive dialer, IVR
- Perform security assessments of servers/network devices/security appliances
- Integrate ancillary monitoring tools/capabilities with the enterprise SIEM, create/tailor complex event alarms/rules and summary reports
- Monitor/analyze output of security related tools for reportable security incidents and residual risk
- Analyze technical risk of emerging Security tools and processes
- Work as part of a security incident response team as needed
- Familiarity / ability to adapt guidance/policies to unique and emerging military technologies/hardware, such as aircraft/avionics, media cartridges, air-to-air/air-to-ground network links, electronic warfare systems, flight data recorders, flight telemetry systems and other military spec input/output devices
- Participate in projects within the technology domain
- Keep yourself informed of your technology domain
- Advanced DNS experience
- 8+ years of experience with general security management
- Must have a minimum of eight (8) years of combined System Network Engineering, Information Assurance and Information Technology Security experience
- Possess Certified Information Systems Security Professional (CISSP) certification or be able to acquire certification within six (6) months after entry on duty
System Security Engineer Job Description
- You will develop Secure OS and Secure OS applications used in various security use cases such as secure key exchanging and web security
- You will develop key android security features such as SELinux/VerifiedBoot/Keystores
- You will develop product security software such as fuzzer/threat modelling/pentest/security tools
- Respond to security system problems on a 7X24 basis as part of a team
- Participate in release management activities for security solutions and infrastructure
- Serve as the Information Assurance representative and primary authority for system security compliance, participating in all system architecture planning and implementation
- Provide compliance with IT system security best practices all applicable US Government, Dept of Justice, and FBI Security Division requirements
- Exposure to Hosted Cloud Security Service (provider view) or SecaaS deployments, design and/or implementation of Cloud Application Management, Evolved Packet Core (EPC) virtualization (MME, S/P GW)
- Network administration, firewall configuration, setting VPN, system hardening, building a defense in depth infrastructure security architecture that includes security controls across multiple technology stack
- Security Certification (CCNA Security, CCNP, JNCIS-SEC, JNCIP-SEC)
- Select, design and integrate a variety of tooling and security infrastructures to operate within the agreed requirements
- Responsible for closing audit findings within set deadlines
- Working experience with RSA SecurID or mobile push Authentication systems
- Experience with development collaboration systems (e.g., Jira, Gerrit)
- Knowledge of at least one scripting language (preferably Python or Perl)
- Minimum of 10 years of related System Engineering experience with a technical Bachelors degree or 8 years with a Masters degree or higher
System Security Engineer Job Description
- Develop, deliver and maintain comprehensive and consistent security solutions to mitigate identified risks to an acceptable level
- Define policies, processes, procedures, configuration baselines and guidelines
- Support the development of a risk management framework for information system related security risks and manage information system related security risks accordingly
- Assess system and application security requirements, threats, vulnerabilities and security risks in complex, heterogeneous systems and throughout their life cycle
- Specify, implement and document information system security concepts and information security controls for new and existing systems
- Assist architects, system/application engineers in the identification and implementation of appropriate information security controls and hardening of systems
- Perform technical security assessments of information systems and applications to identify vulnerabilities and non-compliance
- Define, maintain and optimize the vulnerability and patch management process
- Evaluate emerging risks and information security technologies to ensure an up-to-date information security risk register
- Support security incident response
- Experience in Program Protection Disciplines (Anti-Tamper, Cyber Security, Supply Chain Risk Management, Software Assurance and/or OPSEC)
- Experience in embedded system and/or Built-In Test (BIT) design
- Experience with vulnerability and compliance scanning tools (WASSP, Nessus, SCAP)
- A minimum of 5 years engineering /systems or other related experience
- CCURE 9000/ 800, Lenel, Genetec, Bosch, Exacqvision, Milestone, ONSSI, Verint
- Complete understanding and experience working with DISA security compliance settings for the platforms provided to base level customers, this include a full understanding of the operating system security parameters such as permissions, GPO, security templates, HBSS, HIPs
System Security Engineer Job Description
- Develop tools to find and fix security issues at scale
- Performing technical support for Anti-virus cleanup to include onsite or remote
- Interface and integrate with other departments to allow/enforce access controls for authentication, authorization, and large file transfers
- Perform continuous diagnostic and mitigation (CDM) clients for endpoint monitoring, RES for whitelisting and MIR for forensics
- The candidate should possess excellent planning, organizational, and people skills
- The candidate must have excellent verbal and written communication skills
- The candidate should be able to exercise independent judgment and take initiative and have a positive, results-oriented approach to assignments
- The candidate must also be a self-starter, self-motivated, and independent with strong work ethics
- The individual should also have the ability to estimate task duration and deliver on commitments
- Investigate and characterize non-trivial performance issues in various environments
- Expert understanding around network segmentation, network access controls, multi-factor authentication, IDS/IPS policies, PKI, endpoint protection
- Experience in writing system security plans for complex information systems
- You will assist in the implementation of the required government policy
- To prepare the necessary site paper work and documentation of projects in progress
- To coordinate on site with electrical contractor, equipment supplier and installation subcontractors to carry out the site work of projects and monitoring of the site progress to meet the completion schedule
- To be involved in the testing and commissioning with subcontractor, equipment suppliers and other trades which are required in the project
System Security Engineer Job Description
- Lead strategic initiative to help meet business requirements around operations technology and digital security challenges
- Create automated security tests to enforce security standards
- Support all levels of staff including peers, team members, management and PM PFRMS Customers
- Certified to IASAE level III and CISSP-ISSEP with experience in articulating and executing cyber security and Information Assurance Statement of Work requirements
- Must have knowledge of modern software/system development processes and Army Acquisition, to include object-orientated, AGILE development and use of tools
- Must be capable of translating operational requirements into detailed software/system requirements, to include Software Safety
- Must be capable of providing technical direction to design and development teams, and monitoring progress and productivity through the use of metrics
- Must be able to articulate Cyber Security and Information Assurance Statement of Work requirements and the execution of the requirements
- Will support Cyber Security/Information Assurance IPTs to identify, assess, and eliminate platform, network, and system vulnerabilities
- Must be able to manage multiple timelines in order to obtain ATOs in a timely fashion
- To follow final handover to client with the parties concerned and the subsequent defect rectification works
- To attend site meeting and preparation of site reports etc
- To prepare work completion report on site for the project operation manager to prepare onward payment application to the client and assessment of subcontractor work done
- Experience with continues integration application (Jenkins…) – an advantage
- Hardware, software, data communication basic understanding
- Experience working in production testing equipment