NASA System Security Engineer - Vulnerability

Requirements

Must have:

- Bachelors degree in IT, Cybersecurity, Computer Science, Information Systems, Computer Engineering, or Software Engineering or equivalent experience - At least nine years of relevant experience with a Bachelors, seven years with a Masters, or four years with a PhD/JD - One of the following certifications: CISM, CISSO, CISSP, CISSP-ISSEP, CISSP-ISSAP, CISA, CASP - Over five years of experience in specifying, developing, and maintaining simulations for security engineering analysis - Five years of experience with simulation of hardware and software systems, avionics, and mission environments - Minimum five years of experience in conducting hardware/software vulnerability analysis including simulation testing - Skilled in advanced threat modeling and implementing security solutions - Understanding of embedded systems, including flight software, RTOS, firmware, and FPGA/ASIC logic - Familiarity with space data standards and communication protocols like CCSDS, SpaceWire, and MIL-STD variants - Proven technical leadership and team management skills

Responsibilities:

- Develop and maintain simulation environments for cybersecurity and vulnerability assessment of spacecraft systems - Conduct hardware and software vulnerability analysis through simulation testing and evaluate results - Model spacecraft computing architectures, avionics, and mission environments for security evaluations - Identify attack surfaces and assess interactions among hardware, software, and communication interfaces - Create and run security-oriented test scenarios to evaluate system resilience and vulnerabilities - Assist in planning and executing vulnerability investigation activities with software simulations - Provide technical mentorship to junior engineers in simulation development and analytical processes - Document findings and recommend strategies to enhance system security - Collaborate closely with customers and teams to prioritize investigative tasks - Help formulate an investigation plan, approach, and detailed schedule - Provide weekly updates to internal and external stakeholders on the plan and status

Company:

We are SAIC, a leading technology integrator delivering comprehensive life cycle services and solutions across technical, engineering, intelligence, and enterprise IT markets. Our mission is to redefine ingenuity through extensive customer and domain expertise, facilitating complex, large-scale projects. Headquartered in Reston, Virginia, we employ approximately 15,000 professionals committed to integrity and mission focus while serving U.S. federal government clients. With annual revenues of about $4.5 billion, we offer a dynamic workplace and robust benefits.