NASA System Security Vulnerability Engineer

Description

Description:

SAIC is seeking a Senior System Security Engineer (SSE) to join the NASA Independent Verification and Validation (IV&V) Mission Protection Services (MPS) team and support simulation-based cybersecurity analysis of spacecraft computer systems and mission environments. The Senior SSE will guide the development and execution of models and simulations used to identify and analyze hardware and software vulnerabilities across integrated space system architectures.

The Senior SSE experience with spacecraft software and hardware will be utilized to identify and prioritize potentially vulnerable components. Working alongside a Junior Computer Engineer / Software Developer and a senior Computer/Software Engineer, the Senior SSE will identify and investigate hardware and software system components, interfaces, interactions, attack surfaces, and vulnerabilities through modeling, simulation development, and test case execution. This role will also provide technical direction to junior staff and support planning and execution of vulnerability investigation activities.

�

The Senior System Security Engineer (SSE) responsibilities include, but are not limited to:

• Develop, maintain, and execute simulation environments supporting cybersecurity and vulnerability analysis of spacecraft systems
• Perform hardware and software vulnerability analysis through simulation testing, including test case development and results assessment
• Model spacecraft computing architectures, avionics components, and mission environments to support security investigations
• Identify system attack surfaces and evaluate interactions between hardware, software, and communications interfaces
• Develop and execute security-focused test scenarios to assess system resilience and vulnerabilities
• Support planning and execution of vulnerability investigation activities using software simulations
• Provide technical guidance and mentorship to junior engineers supporting simulation development and analysis efforts
• Document technical findings and recommend mitigations to improve system security posture
• Work closely with the customer and peers to establish an investigative priority list
• Work closely with the customer and peers to develop an investigation plan, approach, and detailed task schedule
• Communicate with internal and external customers on the plan, approach and status weekly

Qualifications

Required Education:�

• Bachelors and nine (9) years or more experience; Masters and seven (7) years or more experience ; PhD or JD and four (4) years or more experience.

�

Desired Education:�

• Bachelor's degree in IT, Cybersecurity, Computer Science, Information Systems,� Computer Engineering, or Software Engineering and 9 years or more relevant experience (will consider an additional 4+ years of relevant experience in lieu of degree)

�

Required Experience:�

• At least one of the following certifications: CISM, CISSO, CISSP, CISSP-ISSEP, CISSP-ISSAP, CISA, CASP

  �

• 5+ years of experience with specification, development, and maintenance of simulations supporting security engineering analyses

• 5+ years of experience with simulation of hardware / software components, avionics, and mission environments

• 5+ years of experience with Hardware (HW) / Software (SW) vulnerability analysis, including execution of simulation testing, test case development, and assessment of results

• Proficiency in advanced threat modeling and deploying security solutions

• Knowledge of embedded systems, including flight software, RTOS, firmware, and FPGA/ASIC logic

• Knowledge of space data standards and communication protocols, such as CCSDS, SpaceWire, and MIL-STD variants

• Technical leadership and management of small team

�

Clearance:�

• Must be a U.S. Citizen with an active Top Secret clearance with the ability to obtain a TS/SCI.�