MIT Lincoln Laboratory Information Security Engineer in Lexington, Massachusetts

Security Services

The Security Services Department's overall mission is to ensure a safe and secure environment and protect MIT Lincoln Laboratory at all facilities in which staff members perform their mission of research and development. To accomplish this mission, this department formulates and implements policies, plans, and actions designed to protect facilities against threats of vandalism, accidental destruction, and sabotage; and safeguards personnel, classified and unclassified information systems, personal identifiable information, property, and other assets from exploitation and recruitment by foreign intelligence agencies.

Position Summary

The Information Security Engineer (ISE) will maintain an Active Directory Client-Server Windows environment as a backup systems administrator on a select network while also performing Information Systems Security Officer responsibilities on adjacent networks. Experience administering Microsoft Exchange and various file server and backup solutions is desired.

The ISE will assist in maintaining configuration management of assigned hardware, computer resource allocation, scheduling, disaster recovery, and capacity planning.

The ISE will assist working with various Laboratory Sponsors to resolve Enterprise service issues (i.e. Email, DNS, Network access, etc.), facilitate computing policy and/or security changes and aid in malware/virus investigation/resolution.

The ISE will work with the Information Systems Security Manager (ISSM) to assist in computer system security issue detection, reporting and mitigation as required by the Systems Security Plan (SSP). Will assist ISSM implementing ICD-503 and JSIG standards while providing technical interpretation and implementation of policy.

The ISE will provide technical support to users, update system configurations, solve user problems with application compatibility, installation, operating system upgrades and maintaining disk based backup system.

The ISE will provide IT security support to several independent Laboratory programs as follows: Develop and maintain System Security Plans (SSP); ensure systems are operated, maintained, and disposed of in accordance with SSPs; ensure configuration management is maintained and documented; manage access to the systems and ensure users are aware of their security responsibilities; conduct periodic reviews to ensure compliance with the SSPs. Will work special security issues and interact with Laboratory management. Will assist in compliance inspections and reviews and conduct audits as required.

Knowledge of security procedures (NISPOM, ICD-503, JSIG), experience administering computer networking and protocols (DHCP, DNS, NIS, NFS, etc.), Ethernet, MS Office Suite, MATLAB, and a variety of other Windows/Linux software is desired. Experience administering Linux variants and VMWare ESX/vSphere/VCenter suite is desirable. Experience managing network switches, routers, and various cryptographic hardware desired. Individual will be responsible for coordinating computer related purchases and manage software licenses.

Requirements:

  • AS/BS degree in Computer Science, Information Technology, Computer Information Systems, or related field.

  • A minimum of 2 years of Systems Administrator experience and a minimum of 3 years of IT security experience in DoD Industrial Security is desired, preferably in a compartmented program environment.

  • Technical experience and skills, course work completed towards a degree, and industry IT certifications may be considered substitutes for education and DoD security experience.

  • DoD 8570 IAT Level II Baseline Certification required (i.e. CompTIA Sec+)

  • Direct experience and skill developing and administering various sized LAN/WAN environments.

  • Experience with operating systems such as Linux, Windows Server/client OS, and virtualization technologies.

  • Technical experience and skill securing operating systems such as Linux, Windows Server/client OS, and virtualization technologies.

  • Familiarity working with NIST 800-53 / Risk Management Framework (RMF) and Intelligence Community Directive (ICD) 503.

  • Experience applying security lockdown policies to operating systems through group policy and local settings.

  • Experience applying software patch/antivirus updates/backups.

  • Experience developing and maintaining Video teleconferencing and VOIP equipment.

  • Experience configuring and maintaining Firewall/VPN configuration.

  • Experience developing scripts to automating various auditing tasks.

  • Experience developing and maintaining Data Loss Prevention strategies utilizing Endpoint Security solutions.

  • Experience maintaining configuration management of system assets.

  • Coordinate procurements, installations, upgrades, and other services as needed.

  • Prior experience working in a collaborative team environment desired.

  • The successful candidate will be subject to pre-employment investigation and must meet all eligibility requirements for access to classified information including compartmented programs.

  • The ability to obtain and maintain a government (DoD) security clearance is required.

MIT Lincoln Laboratory is an Equal Employment Opportunity (EEO) employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, veteran status, disability status, or genetic information; U.S. citizenship is required.