Anduril
Information System Security Engineer - Active Clearance
Anduril, Costa Mesa, California, United States, 92626
Information System Security Engineer - Active Clearance
Company:
Anduril Industries, Inc.Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the defense industry, Anduril is changing how military systems are designed, built, and sold. Anduril’s family of systems is powered by Lattice OS, an AI-powered operating system that turns thousands of data streams into a realtime, 3D command and control center.Information System Security Engineers (ISSEs) directly support business lines that wish to deploy Anduril products in classified environments. ISSEs integrate with security and product teams to document the security implementation of Anduril’s products and traditional networks operating in classified environments. The ideal candidate has a background in software or systems engineering, has experience working with or building CI/CD integrations, and has pivoted to a product or information systems security role.
WHAT YOU’LL DO
Provide expertise documenting security controls in order to reduce the administrative cost of deploying Anduril’s products into an operational environment.Partner with program and security teams to coordinate security artifacts in support of classified deployments.Take technology standards from the commercial space and apply them in classified, air-gapped environments.Work with Information System Owners to understand key stakeholders’ needs and requirements to provide complex technical solutions to drive contractual obligations.Tailor NIST 800-53 controls and determine which controls are applicable to the network environment, as well as oversee the implementation of Continuous Monitoring for their respective programs.Define, document, and conduct security scanning on Anduril’s products and accredited information systems.Scope, shape, and orchestrate development of features to assure products meet compliance goals.
REQUIRED QUALIFICATIONS
Familiar and comfortable with RMF.Experience with one or more programming languages (e.g., C/C++, Golang, Python, Rust).Experience assessing security of firmware, applications, network, cloud, IoT, or embedded systems.Experience conducting automated analysis of software and systems with various scanning tools.Familiarity with security architectures of Ground, aerospace, or cyber-physical systems.Experience working within or building and sustaining CI/CD systems.Demonstrate knowledge of exploits, attacks, and tools used by skilled hackers.2-4 years of experience in RMF Cybersecurity (ISSM / ISSO) or related discipline in support of classified networks.Must possess and be able to maintain a U.S. TS Security clearance with SCI eligibility.
PREFERRED QUALIFICATIONS
CISM / CISSP or equivalent IAM level III certification / Bachelor’s Degree in Information Systems, Cybersecurity, or related field (DoD 8140 compliance).Familiar with NISPOM (32 CFR Part 117) DAAPM, JSIG, applicable NIST publications, and RMF.
#J-18808-Ljbffr
Company:
Anduril Industries, Inc.Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the defense industry, Anduril is changing how military systems are designed, built, and sold. Anduril’s family of systems is powered by Lattice OS, an AI-powered operating system that turns thousands of data streams into a realtime, 3D command and control center.Information System Security Engineers (ISSEs) directly support business lines that wish to deploy Anduril products in classified environments. ISSEs integrate with security and product teams to document the security implementation of Anduril’s products and traditional networks operating in classified environments. The ideal candidate has a background in software or systems engineering, has experience working with or building CI/CD integrations, and has pivoted to a product or information systems security role.
WHAT YOU’LL DO
Provide expertise documenting security controls in order to reduce the administrative cost of deploying Anduril’s products into an operational environment.Partner with program and security teams to coordinate security artifacts in support of classified deployments.Take technology standards from the commercial space and apply them in classified, air-gapped environments.Work with Information System Owners to understand key stakeholders’ needs and requirements to provide complex technical solutions to drive contractual obligations.Tailor NIST 800-53 controls and determine which controls are applicable to the network environment, as well as oversee the implementation of Continuous Monitoring for their respective programs.Define, document, and conduct security scanning on Anduril’s products and accredited information systems.Scope, shape, and orchestrate development of features to assure products meet compliance goals.
REQUIRED QUALIFICATIONS
Familiar and comfortable with RMF.Experience with one or more programming languages (e.g., C/C++, Golang, Python, Rust).Experience assessing security of firmware, applications, network, cloud, IoT, or embedded systems.Experience conducting automated analysis of software and systems with various scanning tools.Familiarity with security architectures of Ground, aerospace, or cyber-physical systems.Experience working within or building and sustaining CI/CD systems.Demonstrate knowledge of exploits, attacks, and tools used by skilled hackers.2-4 years of experience in RMF Cybersecurity (ISSM / ISSO) or related discipline in support of classified networks.Must possess and be able to maintain a U.S. TS Security clearance with SCI eligibility.
PREFERRED QUALIFICATIONS
CISM / CISSP or equivalent IAM level III certification / Bachelor’s Degree in Information Systems, Cybersecurity, or related field (DoD 8140 compliance).Familiar with NISPOM (32 CFR Part 117) DAAPM, JSIG, applicable NIST publications, and RMF.
#J-18808-Ljbffr