Cybersecurity/Software Engineer

Description

For more than 50 years, FAAC has provided system engineering and software products to the US government and private industry. We are seeking a new cybersecurity/software development team member for our Training System Support Center (TSSC) on the Air National Guard Boom Operator Simulation System (BOSS). FAAC’s simulation product development requires collaboration with a wide array of engineering and science disciplines such as Aerospace, Mechanical, Electrical, Computer, and Systems Engineering along with computer science, math, and physics. Candidates with degrees in any of these fields who are willing to expand their knowledge across disciplines can become a part of our dynamic, project-oriented environment.

FAAC is a medium-sized, growing company with great benefits and a uniquely friendly, open spirit. Find more information at www.faac.com.

Work Environment:

This position is located at the TSSC for the ANG KC-135 BOSS program located at McGhee-Tyson Air National Guard Base in Knoxville, Tennessee.

No remote work. Requires access to equipment that is only accessible onsite. Typical work hours are 1st shift with occasional 2nd shift hours as needed to share simulator equipment access.

Typical Responsibilities:

• Design, implement, and maintain cybersecurity controls for simulator equipment.

• Develop and release Cybersecurity updates (patches and STIGs) and comprehensive i instructions.

• Test simulator functionality maintained after cybersecurity patch updates.

• Distribute cybersecurity patches to other BOSS sites

• Help Desk Engineering Support

• Notify Information Security System Manager (ISSM) when changes occur that might affect the authorization determination of the information system(s)

• Assist the ISSM in meeting their duties and responsibilities (work closely with Prime Contractor and Government Reps)

• Prepare, review, and update authorization packages

• Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM prior to the change

• Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly

• Ensure all IS security-related documentation is current and accessible to properly authorized

individuals 

• Ensure audit records are collected, reviewed, and documented (to include any anomalies)

• Execute the cyber security portion of the self-inspection, to include provide security coordination and review of all system assessment plans

• Identify cyber security vulnerabilities and assist with the implementation of the countermeasures for them

• Prepare reports on the status of security safeguards applied to computer systems

• Support software development tasks as needed

• Perform vulnerability and compliance scans using DoD approved tools, (e.g. ACAS Security Center and Nessus per ATO conditions)

• Package scan results and provide to ISSM

Requirements

Minimum Requirements:

• Secret security clearance or ability to obtain

• Certification in Information Assurance Technical (IAT) Level II or equivalent qualification per DoD 8140.03 “Cyberspace Workforce Qualification and Management Program” or ability to obtain within 3 months

• 1 – 10 years’ experience in cybersecurity

• Ability to work independently and within a group

• Clear and effective oral and written communication skills

• Bachelor’s degree in one of the following disciplines: Aerospace, Mechanical, Electrical, Computer, and Systems Engineering, along with computer science, math and physics

• Please provide an 'unofficial' transcript with your application if you have attended school within the past 4 years

Desired Skills and Experience:

• 1 – 5 years’ experience in software development with C/C++ programming language

• Experience with National Institute of Standards (NIST), Risk Management Framework (RMF), and other regulations/security procedures and qualifications as they relate to the Department of Defense (DoD)

• Experience with Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG) and Security Content Automation Protocol (SCAP) tools

• Experience with Windows and Linux OS/Security update strategies

• Experience writing/updating documentation

o System Security Plans (SSP)

o Plan of Actions & Milestones (POA&M)

o Continuous Monitoring Plans

o Risk Assessments

• Experience with the following tools:

o Perl, Python, PowerShell scripting languages

o Cisco CCNA or equivalent

o Atlassian JIRA

o Redmine

o Nessus

o ACAS

o eMASS

o BatchPatch Windows Update Tool

o Microsoft 365 (Work, Excel, PowerPoint, SharePoint, Teams, Visio)

• Prior performance in roles such as System or Network Administrator

• Prior performance in roles such as System, Network Administrator or Information Security System Officer (ISSO)

• Experience working with 3rd party vendors, military personnel, and providing remote technical support

• Knowledge of KC-135 Boom Operations

• Program/project management experience

  Equal Opportunity Employer/Disabled/Veterans