We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
Life Cycle Engineering jobs

Information Systems Security Developer

Life Cycle Engineering
sick time, 401(k)
United States, Missouri, St. Louis
Jan 13, 2025
Information Systems Security Developer

Position Summary:

As Information Systems Security Developer, you will design, develop, test, and evaluate information systems security throughout the systems development life cycle for the National Geospatial-Intelligence Agency (NGA) in St. Louis, MO.

Clearance Requirement:

  • Must have an active DoD Top Secret/SCI security clearance


Essential Functions and Responsibilities:

  • Analyze design constraints, trade-offs and detailed system and security design, and consider life cycle support.
  • Assess the effectiveness of cybersecurity measures utilized by system(s).
  • Assess threats to and vulnerabilities of computer system(s) to develop a security risk profile.
  • Conduct Privacy Impact Assessments (PIAs) of the application's security design for the appropriate security controls, which protect the confidentiality and integrity of Personally Identifiable Information (PII).
  • Develop detailed security design documentation for component and interface specifications to support system design and development.
  • Develop specific cybersecurity countermeasures and risk mitigation strategies for systems and/or applications.
  • Identify components or elements, allocate security functions to those elements, and describe the relationships between the elements.
  • Identify and direct the remediation of technical problems encountered during testing and implementation of new systems
  • Identify, assess, and recommend cybersecurity or cybersecurity-enabled products for use within a system and ensure that recommended products are in compliance with organization's evaluation and validation requirements.
  • Implement security designs for new or existing system(s).
  • Incorporate cybersecurity vulnerability solutions into system designs (e.g., Cybersecurity Vulnerability Alerts).
  • Perform risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change.
  • Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
  • Provide support to security/certification test and evaluation activities. Utilize models and simulations to analyze or predict system performance under different operating conditions.
  • Analyze user needs and requirements to plan and conduct system security development.
  • Implement and integrate system development life cycle (SDLC) methodologies into development environment.
  • Design, develop, integrate, and update system security measures that provide confidentiality, integrity, availability, authentication, and non- repudiation.
  • Perform security reviews and identify security gaps in architecture.
  • Provide input to implementation plans and standard operating procedures as they relate to information systems security.
  • Verify stability, interoperability, portability, and/or scalability of system architecture.


Required Education, Skills, and Experience:

  • BS degree in a STEM field from an accredited institution.
  • Certification Requirement: must have an IAM lvl 3 compliant certification (CISM, CISSP, GSLC, CCISO or equivalent)
  • Knowledge of computer networking concepts and protocols, and network security methodologies.
  • Knowledge of risk management processes
  • Knowledge privacy principles, cyber threats and vulnerabilities.
  • Knowledge of computer algorithms and database systems.
  • Knowledge of organization's enterprise information security architecture.
  • Knowledge of information security systems engineering principles (NIST SP 800-160).
  • Knowledge of IT security principles and methods (e.g., firewalls, demilitarized zones, encryption).
  • Knowledge of local area and wide area networking principles and concepts including bandwidth management.
  • Knowledge of network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML).
  • Knowledge of software development models (e.g., WaterfallModel, Spiral Model).
  • Knowledge of system design tools, methods, and techniques, including automated systems analysis and design tools.
  • Knowledge of systems testing and evaluation methods.
  • Skill in conducting vulnerability scans and recognizing vulnerabilities in security systems.
  • Skill in designing security controls based on cybersecurity principles and tenets.
  • Skill in discerning the protection needs (i.e., security controls) of information systems and networks.
  • Skill in evaluating the adequacy of security designs.
  • Skill in conducting audits or reviews of technical systems.
  • Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.
  • Ability to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
  • Ability to analyze test data.
  • Ability to function in a collaborative environment, seeking continuous consultation with other analysts and experts-both internal and external to the organization-to leverage analytical and technical expertise.
  • Ability to participate as a member of planning teams, coordination groups, and task forces as necessary.


Physical Demands and Expectations:

  • Regular physical activity to include walking, climbing stairs, bending, stooping, reaching, lifting (up to 15 pounds), and standing; occasional prolonged sitting
  • Ability to speak, read, hear and write, with or without assistance
  • Ability to use phone and computer systems, copier, fax and other office equipment



This position description represents a summary of the major components and requirements of the outlined job. Other duties and responsibilities may be assigned or required as business needs dictate. Questions regarding this description should immediately be addressed to the department manager or to Human Resources.
L IFE CYCLE E NGINEERING

Life Cycle Engineering (LCE) is a privately held, employee-owned company with an emphasis on "doing the right thing the right way", which applies to the way we treat our customers and employees. We are proud to have been recognized as a "Best Place to Work" in Engineering and in many states and local communities in which we work! Learn more below and at www.lce.com.

Mission

Our mission is to enable people and organizations to achieve their full potential.

As a professional services organization, our mission is focused on our clients' people and organizations. It is our company's cornerstone belief that we will not lead the industry in assisting our clients unless we excel at helping our own people and teams reach their full potential.

Culture

Our corporate culture encourages personal and professional growth because LCE's success depends on the talent, innovation, professionalism, and commitment of its employees. LCE is a strengths-based organization focused on turning individual talents into strengths and then turning individual strengths into organizational performance that supports our clients' success.

Benefits

  • Affordable Medical/Dental/Vision Plans for employees and their families
  • Free Employee Life and Disability Insurance, with supplemental coverage options available
  • Health Savings Account and Flexible Savings Account options
  • Company matched 401(k) & company-funded Employee Stock Ownership Program (ESOP)
  • Paid Vacation, Holiday, Sick Leave
  • Continuing Education and Professional Development programs at all levels
  • Flexible Schedules and Relaxed Dress Code
  • Employer-sponsored events, social collaboration, and open communication
  • Free access to an extensive online training library, including certification prep
  • Bonus Program for outstanding contributions, Employee Referral Program, numerous Recognition Opportunities, and more...


*Benefits may vary by business unit and location. https://www.lce.com/why-work-at-lce/#benefits

Life Cycle Engineering (LCE) shall abide by the requirements of 41 CFR * 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, or national origin. Moreover, these regulations require that LCE take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, because of or on the basis of pregnancy, childbirth, or related medical conditions, including, but not limited to, lactation, and any other status protected by applicable state law. In addition, LCE will not discharge or in any other manner discriminate against any employee or applicant for employment because such employee or applicant has inquired about, discussed, or disclosed the compensation of the employee or applicant or another employee or applicant. LCE shall also abide by the requirements of 29 CFR Part 471, Appendix A.
Applied = 0
MORE JOBS LIKE THIS

(web-6f6965f9bf-tv2z2)