System Security Engineer

The High Availability Architecture Group within the Systems Engineering directorate is seeking a Senior System Security Engineer to guide and facilitate concept development, mission-system analysis, and requirement definition & compliance for critical, yet novel & disruptive cyber resilient technologies. This handpicked candidate must possess a unified System Security, Cybersecurity, and Cryptography expertise that can expand Draper's insight to address national security threats which remain prevalent throughout critical enterprises, infrastructure, systems, and operations. A successful candidate will be equipped to propose modern solutions embedded with security awareness, that adhere to NIST, NSA, and DoD standards, to proactively mitigate unacceptable loss and unrecoverable downtime throughout their lifecycle. The multidisciplinary proficiencies supporting this initiative are System Security Concepts & Design Principles, Resilient Architecture, Anomaly & Contingency Management, and Cryptography & Key Management., * Develop, execute and track the performance of security measures to protect information and network infrastructure and computer systems.

• Design computer security strategy and engineer comprehensive cybersecurity architecture.
• Identify, define and document system security requirements and recommend solutions to management.
• Configure, troubleshoot and maintain security infrastructure software and hardware.
• Install software that monitors systems and networks for security breaches and intrusions.
• Monitor systems for irregular behavior and set up preventive measures.
• Plan, develop, implement and update company's information security strategy.
• Educate and train staff on information system security best practices.
• Help define a security approach for a particular defined problem and independently execute plan.
• Contribute high quality content for technical reports and presentations with minimal guidance.
• Adapt appropriately to changes in program requirements.
• Proactively identify needs and concerns associated with plan execution and communicate them to project leadership.

• Curiosity-driven approach to solving complex, industry and customer-driven problems as part of a multi-disciplinary team.
• Collaborate and communicate effectively and openly with multi-disciplinary program team members. program leadership, and non-technical personnel
• Team player able to work in a fast-paced environment.
• Ability to balance multiple competing tasks and demands.

Education Requires a bachelor's degree in Electrical Engineering, Computer Engineering, Mechanical Engineering, Systems Engineering, Applied Physics, or related field. Master's degree preferred., * Bachelor's degree requires 3-5 years' experience of working on System Security Engineer or other relevant position.

• Master's degree requires 0-2 years' experience of working on System Security Engineer or other relevant position., * Proficiency applying System Theoretic Process Analysis for Security (STPA-Sec) to industry challenge problems
• Proficiency with Model-based System Engineering toolkits, such as Cameo/MagicDraw, DOORs/DoorsNG, Jama Connect for the purposes of attack surface modeling and rapid impact & gap analysis for validation
• An astute understanding of the applications of cryptography for complex weapon and space systems, cryptographic key management, Public Key Infrastructure (PKI) and the NSA's Key Management Infrastructure
• Experience documenting compliance towards parent specifications and standards (i.e.: NIST SP 800.160, NIST Cybersecurity Framework (CSF) 2.0, DoD Cyber Tabletop Guide, NIST SP 800-57, NIST 800.53 & Risk Management Framework (RMF), MITRE Attack Framework, and DoD Instruction 3150.02)
• Proficiency in requirement derivation, definition, and analysis for System Security, Network Security, and Data Security needs
• Experience integrating vulnerability remediation, risk mitigation, and incident response within the Systems Engineering process.
• Experience drafting innovative R&D proposals to commercial government sponsors

Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000+ employees of Draper tackle important national challenges with a promise of delivering successful and usable solutions. From military defense and space exploration to biomedical engineering, lives often depend on the solutions we provide. Our multidisciplinary teams of engineers and scientists work in a collaborative environment that inspires the cross-fertilization of ideas necessary for true innovation. For more information about Draper, visit www.draper.com., Our work is very important to us, but so is our life outside of work. Draper supports many programs to improve work-life balance including workplace flexibility, employee clubs ranging from photography to yoga, health and finance workshops, off site social events and discounts to local museums and cultural activities. If this specific job opportunity and the chance to work at a nationally renowned R&D innovation company appeals to you, apply now www.draper.com/careers.