About Peraton
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure.
Responsibilities
Peraton is seeking a
Computer Systems Security Engineer for Facilities Control Systems, to join our team in Brook Park, OH, in support of the NASA Glenn Engineering and Research Support (GEARS) Contract team. As a major partner of the GEARS team, Peraton is responsible to provide multi-disciplinary engineering services to maintain, enhance and improve the facilities at the NASA John Glenn Research Center Facilities.
In this position, you will support the NASA GRC Facilities Infrastructure Division as our engineering computer system security specialist, to support the Central Process Systems (CPS) and GRC Institutional Monitoring Control System.
Responsibilities include:
- Responsible for maintaining systems security plans, contingency plan testing and associated system accreditation activities required to maintain Authority to Operate (ATO) for the systems
- Perform risk analysis on NASA GRC Central Process Systems (CPS) and NASA Glenn Research Center Institutional Monitoring Control System (GIMC)
- Assist the Information System Owner (ISO) and the Information System Security Officer (ISSO) to define and facilitate the Plan of Action and Milestones (POA&Ms) and Risk Based Decisions (RBDs) in the NASA RSA Archer Risk Information Security Compliance System (RISCS) associated with the Information Systems
- Direct ISO and ISSO in Security Controls Assessments as a part of Continuous Monitoring. Review and update Implementation Details of Security Controls in the RISCS system when required
- Review remediation requirements set forth by NASA Security Operations Center Mitigation Action Requirements and Situational Awareness Reports (SOC MARs and SARs) and ensure the ISO and ISSO understands their requirements
- Document how RISCS controls are implemented and ensure any POA&Ms and/or RBD are tracked through their life cycle
Qualifications
REQUIRED EXPERIENCE:
- Bachelor's Degree in a related Engineering discipline and 5+ years of directly related technical experience, or a MS degree and 3+ years of experience; without a degree, 9+ years of experience, with certifications and technical training may be considered
- Minimum 5 years of experience in relevant technical IT security analysis or monitoring
- Must have a working knowledge and understanding of NIST 800-53 and NIST RMF
- Knowledge and understanding of various Government Information Assurance requirements to include NIST Guidelines, CIS Benchmarks, or other NASA IA Regulations supporting NASA IT Systems
- Basic general understanding of various Federal Information Processing Standards (FIPS)
- Experience using Microsoft Office Suite (Word/Excel)
- Must be a US Citizen and successfully complete a U.S. government background investigation
DESIRED EXPERIENCE:
- Experience working with NASA or other similar government agencies.
- Experience working with and knowledge of Operational Technology (OT) systems.
- Knowledge of Siemens' APOGEE/Insight, Siemens Desigo CC and Siemens PXC controllers & OPC Interface
- Knowledge of ABB Infi-90/800xA systems
- Experience with MS Windows, networking protocols, programming languages, and database management systems
- Experience and familiarity with the roles and responsibilities of an Information System Security Assessor (ISA).
- Certifications preferred:
- Certified in Governance, Risk and Compliance (CGRC)
- Certified in Risk and Information Systems Control (CRISC)
- Certified Information Systems Security Professional (CISSP)
- Information Systems Security Engineering Professional (ISSEP)
- Information Systems Security Management Professional (ISSMP)
- Information Systems Security Architect Professional (ISSAP)
- Certified Information Security Auditor (CISA)
- Certified Information Security Manager (CISM)
- Communication skills (verbal and written) and the ability to work effectively in a team environment Target Salary Range
$86,000 - $138,000. This represents the typical salary range for this position based on experience and other factors.
SCA / Union / Intern Rate or Range
EEO
An Equal Opportunity Employer including Disability/Veteran.
Our Values
Benefits
At Peraton, our benefits are designed to help keep you at your best beyond the work you do with us daily. We're fully committed to the growth of our employees. From fully comprehensive medical plans to tuition reimbursement, tuition assistance, and fertility treatment, we are there to support you all the way.
- Paid Time-Off and Holidays
- Retirement
- Life & Disability Insurance
- Career Development
- Tuition Assistance and Student Loan Financing
- Paid Parental Leave
- Additional Benefits
- Medical, Dental, & Vision Care