About your next challenge as a Senior Systems Security Analyst:
The Senior Systems Security Analyst is a member of the System Security Engineering (SSE) team, within the Software Engineering department at L3Harris MAS. The Senior System Security Analyst will develop and maintain the security posture of aerospace platforms and their associated ground systems and supply chains throughout their lifecycles. This will primarily be achieved through the conduct of airworthiness risk assessments and through the execution of SSE life cycle activities with a focus on the NIST SP 800-160V1 Technical Processes (security requirements engineering, system security analysis, verification, validation, etc.). In maintaining the security posture of an assigned Program, the analyst will take a lead role in conducting Cybersecurity Framework core functions (Identify, Protect, Detect, etc.) to monitor, respond, and report on current security related activities, which present risk to the applicable Program.
What you will do:
- Works independently under general direction and guidance of the System Security Engineering Lead.
- Conducts airworthiness risk assessments for military and commercial platforms and produce associated artefacts as required. This may involve the conduct of safety assessments for aircraft, systems, and equipment.
- Analyses airworthiness risk assessments for their impact to overall system security posture.
- Develops and implements security controls to secure weapon system components.
- Develops and executes security test plans and procedures to secure weapon system components.
- Works with a cross-functional team across multiple projects to secure clients' assets from threats and vulnerabilities as part of a broader system security approach.
- Communicates with internal and external stakeholders to obtain, relay and explain relevant information pertaining to ongoing Cyber Security and System Security initiatives.
- Organize, develop, and present security briefings and security status reports.
- Remain up to date on and interested in security technologies, threats, vulnerabilities, threat models, processes.
- Create draft guidelines, and other technical documentation in support of ongoing Cyber and System Security initiatives.
Requirements:
- A Bachelor’s degree in a relevant field of specialization is required. Preferred fields of specialization: software engineering, computer engineering, computer science, or electrical engineering. A master's degree in a relevant field of specialization is an asset.
- Experience in the practical use of the RTCA DO-326 and DO-356 security standards.
- Experience in on-aircraft testing of digital and analog mission support / avionics systems.
- Thorough understanding of aircraft communication, navigation, integral avionics systems, and mission systems.
- Knowledge of cyber security frameworks such as: NIST, COBIT, NDSOD, ITSG-33, ISO 27001, and ISO 27002.
- Practical knowledge of SAE ARP4761A (Safety Assessment Process).
- Understanding of the latest security principles, techniques, and protocols.
- The selected candidate must be eligible to meet requirements and conditions of the Canadian Controlled Goods Program (CGP) and the requirements for U.S. International Traffic in Arms Regulations (ITAR).
- The job candidate will require a RELIABILITY security clearance to start in this position, and is required to obtain and hold a NATO SECRET security clearance for continued employment.
Qualifications:
- Certification: CISSP, CCSP, CISM or equivalent preferred.
- RTCA Airworthiness Security Certification (DO-326, DO-356, and DO-355) formal training.
- SAE Safety Assessment procedure (ARP4761A) formal training.
Preferred additional skills:
- Excellent interpersonal and communication skills with the ability to interact and build trust across all levels of the organization, partners and with customers.
- Ability to effectively plan, organize, and execute work in one or more projects.
- Ability to work both independently and within groups.
- Problem solving skills and ability to work under pressure.
- Ability to develop and execute a ‘plan of work’.
- Self-directed team member.
Eligibility Criteria (Mandatory):
- Must be eligible for registration with the Controlled Goods Program.
- Must be eligible to obtain and maintain a government of Canada Reliability status and Secret Level 2/NATO SECRET security clearance.
- Must be eligible to meet the requirements for U.S. International Traffic in Arms Regulations (ITAR).
L3Harris is proud to be an equal opportunity employer and is committed to treating all of its employees and job applicants with respect and dignity and to maintaining a workplace free from discrimination. Anyone applying for a position will be considered without regard to the following: race, national or ethnic origin, colour, religion, age, nationality, ancestry, ethnicity, gender, sex, sexual orientation, gender identity or expression, marital status, family status, genetic characteristics, disability, citizenship status, or conviction for an offence for which a pardon has been granted or in respect of which a record suspension has been ordered, or any other characteristic that is protected by applicable human rights legislation.
L3Harris maintains a drug-free workplace and conducts pre-employment drug and alcohol testing and background checks, in accordance with applicable law. Such results are only accessible and viewed by individuals at L3Harris who have direct responsibility in the hiring process. If you fail to report for a drug and alcohol test, refuse to undergo such test or test positive for the presence of drugs or alcohol, the hiring process may be concluded or your offer of employment may be rescinded, in L3Harris’ sole discretion.