• Information Assurance Program Engineer

    Job Location US-MA
    Posted Date 2 months ago(11/6/2018 11:35 AM)
  • Overview



    Located in the U.S. and a subsidiary of Kongsberg Maritime, Hydroid is the world’s most trusted manufacturer of advanced Autonomous Underwater Vehicles (AUVs). Our marine robotics systems provide innovative and reliable full-picture solutions for the marine research, defense, hydrographic and offshore/energy markets. Our products represent the most advanced, diversified and field-proven family of AUVs and AUV support systems in the world.


    Hydroid employees are passionate about their work and strive to produce top-quality products and service. All products are designed and manufactured at the Hydroid facilities in Pocasset, MA.


     This position requires proven knowledge and experience in Information Assurance (IA)/Cyber Security engineering. Providing all Cybersecurity Support (CS) support for Hydroid applications and products in compliance with the DoDI 8510 Risk Management Framework (RMF) for DoD Information Technology and all associated policies, processes and procedures that require cybersecurity support.  The successful candidate must have a CISSP certification or equivalent.


    • Reviews, consolidates and develops IA policy in accordance with Hydroid requirements
    • IT Information Assurance point of contact in the design and development of new systems, applications, and solutions for external customer's enterprise-wide cyber systems and networks.
    • Manage strategic projects from conception to retirement, as well as post-build upgrade efforts, providing secure work environments
    • Provides technical support and assistance to Hydroid and assess IT policies, standards, guidelines and procedures to ensure balance of security and operational requirements
    • Ensures system security needs established and maintained for operations development, security requirements definition, security risk assessment, systems analysis, systems design, security test and evaluation, certification and accreditation, systems hardening, vulnerability testing and scanning, incident response, disaster recovery, and business continuity planning and provides analytical support for security policy development and analysis.
    • Integrates new architectural features into existing infrastructures, designs cyber security architectural artifacts, provides architectural analysis of cyber security features and relates existing system to future needs and trends, embeds advanced forensic tools and techniques for attack reconstruction, provides engineering recommendations, and resolves integration and testing issues.
    • Required to brief senior management on IA policy changes, updates and progress
    • Vulnerability remediation management; developing, documenting and implementing IA processes and procedures; ensuring compliance with Department of Defense (DoD) - mandated IA directives, developing and maintaining system baselines and system inventories, leading change management, and performing DoD system certification and accreditation activities as necessary.
    • Manage the weekly vulnerability scan remediation process (ACAS)
    • Manage Information Assurance Vulnerability Management (IAVM) requirements for an operational DoD environment
    • Perform DISA Security Technical Implementation Guidelines (STIG) on systems as necessary
    • Develop and document IA processes and procedures for the environment as necessary
    • Manage DoD application/server certificate requests
    • Perform DoD system certification and accreditation activities as prescribed by IA leadership
    • Ensure technical environment is in compliance with DoD-mandated IA directives
    • Create, update, and maintain a System Security Plan
    • Manage STIG Process for an operational DoD environment, including scheduling, validation, remediation, and reporting
    • Work with customers, software developers, network / system administrators, and others to ensure that security requirements are understood and implemented.



    • Must have an active CISSP, CISM, or STLC certification
    • Demonstrate proven proficiency and experience in developing and writing Cybersecurity program policy, doctrine, and regulations
    • BA or MS in Computer Science plus 5 years work experience or equivalent combination of education and experience.
    • The ideal candidate is an individual that can work in a fast paced environment; with a high attention to detail, excellent problem solving skills, ability to multi-task and enthusiastic attitude.

    A condition of this position will require the successful Applicant to pass a government security investigation and must subsequently receive authorization to access US Department of Defense Controlled Unclassified Information (“CUI”) and potentially classified information.


    We offer a very competitive salary and an excellent benefits package including 75% company paid medical and dental insurance. The company also offers paid Life, STD, LTD, tuition reimbursement and 401K with company match, and more.


    Hydroid is proud to be an Equal Opportunity/AA/M/F/V/D Employer and is committed to a diverse workforce. If you are a qualified individual with a disability or a disabled veteran and need assistance with the application process as a result of your disability please call 1-508-563-6565 or mail your request to 1 Henry Drive, Pocasset, MA 02559, Attn: Employment Application Assistance.



    Don't forget to check us out here!

    Facebook: https://www.facebook.com/HydroidInc/

    LinkedIn: https://www.linkedin.com/company/2687093

    YouTube: https://www.youtube.com/channel/UCL98CMrgZp0XpHM22GtxGEA



    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed