Sr. Systems Security (Cybersecurity) Engineer (Onsite - Cedar Rapids, IA) Secret Clearance Required
Role details
Job location
Tech stack
Job description
- Support the development, implementation, and maintenance of Risk Management Framework (RMF) artifacts and security control validation activities required to obtain and maintain an Authority to Operate (ATO).
- Review proposed system changes and evaluate their cybersecurity impact to ensure modifications do not adversely affect system security or accreditation.
- Perform vulnerability assessments, analyze findings, develop mitigation strategies, and document remediation plans.
- Implement and validate security improvements by assessing system configurations, identifying vulnerabilities, and applying security best practices.
- Develop cybersecurity requirements, system security architecture documentation, boundary diagrams, data flow diagrams, hardware/software inventories, and supporting RMF documentation.
- Perform Security Technical Implementation Guide (STIG) implementation, compliance validation, and remediation using tools such as Evaluate STIG, STIG Viewer, and SCAP Compliance Checker.
- Conduct vulnerability scanning using Tenable Security Center (Tenable.sc) and Nessus, analyze results, and coordinate remediation efforts.
- Provide hands-on Linux systems administration and cybersecurity support for Red Hat Enterprise Linux (RHEL)and other Linux distributions.
- Troubleshoot Linux operating system issues including: Network connectivity (DNS, routing, firewalls, interfaces, VLANs, bonding, SSH), System services (systemd), User authentication (LDAP, SSSD, PAM), SELinux policy issues, Storage, file systems, permissions, and process management, Log analysis using journalctl, rsyslog, auditd, and security logs
- Perform cybersecurity troubleshooting on Linux systems by: Validating secure configurations, Reviewing running services and open ports, Analyzing firewall configurations (firewalld/iptables/nftables), Verifying certificates and encryption configurations, Investigating authentication failures and audit events, Supporting incident response and forensic data collection
- Troubleshoot network communication using the OSI Modeland standard Linux networking tools (ping, traceroute, tcpdump, netstat/ss, nmcli, ip, dig, nslookup, curl, wget).
- Collaborate with Software Engineers, Systems Engineers, ISSOs, and Program Managers to integrate cybersecurity requirements into system designs.
- Develop technical mitigation statements, risk acceptance packages, and executive-level documentation supporting RMF assessments.
- Maintain accurate technical documentation, procedures, and cybersecurity artifacts throughout the program lifecycle.
What You Will Learn:
- You will learn to be a more effective Systems Security Engineer and leader by gaining niche skills enabling you to be unique in all you do.
- You will take flight into becoming a subject matter expert and leader in cybersecurity within VLF technologies with exposure to the variety of businesses and products in ever an evolving field. We are growing, so can you!
Requirements
Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance, * Typically requires a degree in Science, Technology, Engineering or Mathematics (STEM) and minimum 5 years prior relevant experience or an Advanced Degree in a related field and minimum 3 years of experience
- ACTIVE and transferable Secret U.S. government issued security clearance is required prior to start date with the ability to obtain Top Secret clearance
- U.S. citizenship is required, as only U.S. citizens are eligible for security clearances
- Experience in Security Technical Implementation Guidance (STIG) and Risk Management Framework (RMF)
- Experience with Systems Engineering requirements/specifications
- Experience implementing DoD and Federal IA Certification and Accreditation Processes, IA controls and developing and maintaining associated certification and accreditation documentation.
- Experience with utilizing vulnerability scanning tools - i.e. Tenable Security Center, STIG Viewer, SCAP Compliance Checker/Tools
- Experience with Linux Commands
Qualifications We Prefer:
- Active and transferable U.S. government issued DoD TOP SECRET security clearance.
- DoDI 8570.01-M IAT Level-II Compliant Certification (e.g., Security+, CISSP, or equivalent).
- Experience with Program Protection Plans (PPP) DoDI 5000.02 and DoDI 5200.39
- Experience with implementing highly technical solutions and reporting their importance to program managers and stakeholders
Benefits & conditions
What We Offer:
- Medical, dental, and vision insurance
- Three weeks of vacation for newly hired employees
- Generous 401(k) plan that includes employer matching funds and separate employer retirement contribution, including a Lifetime Income Strategy option
- Tuition reimbursement program
- Student Loan Repayment Program
- Life insurance and disability coverage
- Optional coverages you can buy pet insurance, home and auto insurance, additional life and accident insurance, critical illness insurance, group legal, ID theft protection
- Birth, adoption, parental leave benefits
- Ovia Health, fertility, and family planning
- Adoption Assistance
- Autism Benefit
- Employee Assistance Plan, including up to 10 free counseling sessions
- Healthy You Incentives, wellness rewards program
- Doctor on Demand, virtual doctor visits
- Bright Horizons, child and elder care services
- Teladoc Medical Experts, second opinion program
- And more!, The salary range for this role is 86,800 USD - 165,200 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate's work experience, location, education/training, and key skills.
Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.
Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company's performance.
This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply.
RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window.
RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans' Readjustment Assistance Act.