Logo
The MITRE Corporation

Information Security Engineer

The MITRE Corporation, Bedford, Massachusetts, us, 01730


Why choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both. That's because MITRE people are committed to tackling our nation's toughest challenges—and we're committed to the long-term well-being of our employees. MITRE is different from most technology companies. We are a not-for-profit corporation chartered to work for the public interest, with no commercial conflicts to influence what we do. The R&D centers we operate for the government create lasting impact in fields as diverse as cybersecurity, healthcare, aviation, defense, and enterprise transformation. We're making a difference every day—working for a safer, healthier, and more secure nation and world. Our workplace reflects our values. We offer competitive benefits, exceptional professional development opportunities, and a culture of innovation that embraces diversity, inclusion, flexibility, collaboration, and career growth. If this sounds like the choice you want to make, then choose MITRE—and make a difference with us.

Department Summary:

Join MITRE’s corporate Information Security team and be at the forefront of security management in technology deployments. Take the lead in helping MITRE demonstrate technical innovation while preserving corporate defenses against Advanced Persistent Threats (APT). Working with other senior InfoSec leaders, provide strategic guidance on the MITRE’s adoption of emerging technologies such as mobility, cloud, and collaboration. Experienced, motivated, self-starting, continuously learning candidates will enjoy the best of both leading a tight-knit team and having individual responsibility and independence.

Roles and Responsibilities:

Lead security reviews of Internet facing prototypes and services.

Guide corporate IT: co-engineering secure corporate architectures and systems.

Advise sponsor projects on how to implement strong, MITRE compliant security.

Assess the security and/or vulnerability of deployed systems using tools and adversary Tactics, Techniques, and Procedures (TTPs) as part of a Threat-Based Defense

Review vendor and supply chain security to present assessments to MITRE management.

Minimum Qualifications:

Working knowledge of basic information security concepts

Typically requires a Bachelor’s degree and a minimum of 2 years of related experience; or an advanced degree with relevant experience who can immediately contribute at this job step; or equivalent combination of related education and work experience.

Strong analytical skills. Demonstrated ability to decompose complex technical problems into manageable portions, identify driving factors in technical decisions.

Preferred Qualifications:

Familiarity with risk management methodology, evaluating risks against business requirements, determining probability and impact of weaknesses based on knowledge of the system and TTPs used by adversaries.

Familiarity with assessment tools such as Nessus/Security Center, Rapid7, Acunetix, Burp, and nmap

Host level system administration and security knowledge (Windows, Mac/iOS, and/or *nix)

Application-level security knowledge (CWEs, SQL Injection, XSS, Buffer Overflows, etc.) and ability to manually test & create proof of concept exploits against a vulnerable application.

Mobile security knowledge (e.g., use of sandbox applications, brokered/virtualization options, device security, bring your own device (BYOD) considerations)

Network level security knowledge (firewalls, VLANs, 802.1x, MPLS, segmentation)

Experience with public cloud (AWS/Azure/GCP)

SASE/Zero-trust Architectures

This requisition requires the candidate to have a minimum of the following clearance(s):

None

This requisition requires the hired candidate to have or obtain, within one year from the date of hire, the following clearance(s):

Secret

Work Location Type:

Hybrid

MITRE is proud to be an equal opportunity employer. MITRE recruits, employs, trains, compensates, and promotes regardless of age; ancestry; color; family medical or genetic information; gender identity and expression; marital, military, or veteran status; national and ethnic origin; physical or mental disability; political affiliation; pregnancy; race; religion; sex; sexual orientation; and any other protected characteristics. For further information please visit the Equal Employment Opportunity Commission website EEO is the Law Poster (https://www.eeoc.gov/sites/default/files/2022-10/22-088_EEOC_KnowYourRights_10_20.pdf) and Pay Transparency (https://www.dol.gov/sites/dolgov/files/OFCCP/pdf/pay-transp_%20English_formattedESQA508c.pdf) .

MITRE intends to maintain a website that is fully accessible to all individuals. If you are unable to search or apply for jobs and would like to request a reasonable accommodation for any part of MITRE’s employment process, please email recruitinghelp@mitre.org .

Copyright © 2024, The MITRE Corporation. All rights reserved. MITRE is a registered trademark of The MITRE Corporation. Material on this site may be copied and distributed with permission only.

Benefits information may be found here (https://careers.mitre.org/us/en/benefits)