System Security Analyst for Space Systems - Military veterans preferred

2021-11-20
SAIC (www.saic.com)
Other

/yr

  full-time   employee


Flexwork
West Virginia
United States

Description

SAIC is seeking a System Security Analyst candidate to support NASA IV&V’s Mission Protection Services (MPS), focusing on providing assurance that NASA’s mission systems operate safely, reliably, and securely in a growing threat environment. This multi-faceted position requires expertise in identifying cybersecurity risk across missions and mission systems, a deep understanding of one or more mission systems and subsystems, and the ability to analyze these systems to identify mission security hazards, security risk, and assure that security engineering is adequate to protect the safety of crew and success of the mission.

Coordinate with other domain experts to develop a sufficient understanding of the mission and systems to perform security analysis.

CYBERSECURITY RISK IDENTIFICATION

Think like an attacker: identify ways to exploit a specific mission and mission systems that would impact safety and mission success. For example:

  • Is the command path vulnerable?
  • What about the supply chain?
  • Where can I intercept, modify, or access critical information?
  • How can I initiate an attack chain?
  • What does the security architecture tell me about potential threat vectors?

Apply domain, mission, and system knowledge coupled with security intelligence of the end-to-end systems to identify areas of cybersecurity risk, where a successful exploit could impact safety or mission success. Go beyond compliance to governing requirements and ensure security of the system.

CYBERSECURITY ANALYSIS

Conduct and leverage risk assessments to identify high risk mission security hazards and use risk to refine focus areas for cybersecurity analysis.

Ensure the set of system security planning product(s) needed for the end-to-end project requirements are sufficient. 

Identify and assess engineered measures to ensure that vulnerabilities are identified, mitigated, and appropriately controlled to prevent exploitation through design, implementation, verification, and operations. Leverage knowledge in implementation details to evaluate flight HW and SW for actual and potential vulnerabilities. 

Coordinate cybersecurity assessments across other specialized cybersecurity teams.

Qualifications

TYPICAL EDUCATION AND EXPERIENCE:  Bachelors degree and nine (9) years or more experience; Masters and seven (7) years or more experience; PhD and four (4) years or more experience.

Deep understanding and experience in the system and software development lifecycle (e.g. design, implementation, verification) and/or operations of one or more mission system domains such as:

  • C&DH
  • GNC
  • Communications
  • Space Communications and Navigation (SCaN) systems (e.g. DSN, SN, NEN, Daphne)
  • Thermal
  • Propulsion
  • Science Instruments
  • Electrical Power Systems
  • Mission Operations Centers (MOC) including operating procedures and databases
  • Command and Telemetry, including interaction with ground stations
  • CSSDS protocols
  • Fault Detection Isolation and Recovery (FDIR)
  • Proximity operations and docking
  • Entry, Descent, and Landing (EDL)
  • Autonomous operations
  • Crewed and robotic missions

Knowledge of implementation details related to the following functional aspects of the End-to-End system are desired:

  • HW decoded commands at the transceiver
  • Command payload processing, encryption, authentication, CCSDS protocols and how packet headers are constructed/processed/function
  • Onboard originated commanding
  • 1553 bus and other onboard bus protocols and mechanisms
  • Onboard memory management
  • Software patching approaches and operations
  • Real-time processor/interrupt service routines
  • Hazards/controls, fault management, redundancy, and safe modes

 



COVID Policy: Prospective and/or new employees are required to adhere with SAIC's vaccination policy. All SAIC employees must be fully vaccinated and they must submit proof of vaccination on their first day of employment. Prospective or new employees may seek an exemption to the vaccination requirement at and must have an approved exemption prior to the start of their employment. Where work is performed strictly at a customer site, customer site vaccination requirements preempt SAIC's vaccination policy.
Target salary range: $100,001 - $125,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.