Cybersecurity Lead
Hanwha Defense USA, Inc. · Huntsville, AL · 2 mo ago
On-siteEngineeringFull-time
Cybersecurity Strategy and Architecture
The Cyber Security Lead is responsible for leading the development, implementation, and maintenance of cybersecurity strategy and architecture for the ground combat vehicle platform. This includes overseeing the RMF activities, coordinating cybersecurity requirements development, and managing vulnerability assessments and penetration testing.
Risk Management Framework (RMF)
- Oversee Risk Management Framework (RMF) activities, including security categorization, control selection, security assessment documentation, and support for Authorization to Operate (ATO) efforts.
Cybersecurity Requirements Development
- Coordinate cybersecurity requirements development, traceability, and verification across all subsystems and program partners.
Vulnerability Assessments and Risk Tracking
- Manage vulnerability assessments, coordinate penetration testing, and track cyber risks, ensuring timely mitigation of identified issues.
Guidance and Collaboration
- Provide guidance to engineering teams on secure design practices, cybersecurity technical standards, and compliance with relevant DoD and service-specific requirements.
- Review cybersecurity deliverables, engineering artifacts, and interface documents to ensure security considerations are fully integrated into program processes.
- Collaborate with systems engineering, software engineering, mission systems, and integration teams to ensure cybersecurity is incorporated throughout design, development, testing, and sustainment.
Technical Reviews and Program Support
- Participate in program technical reviews, customer meetings, and cybersecurity working groups.
- Create cyber test plans, security assessment plans, and provide cybersecurity-related inputs for technical reviews.
Travel and Other Activities
- Support creation of cyber test plans, security assessment plans, and cybersecurity-related inputs for technical reviews.
- Perform travel as required to customer locations, test sites, partner facilities, or program events.
Qualifications
- Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Engineering, or related technical field.
- Significant professional experience in cybersecurity roles within the U.S. defense sector.
- Working knowledge of DoW cybersecurity policies, including RMF (NIST SP 800-37/53), DoDI 8510.01, and service-specific cybersecurity processes.
- Experience developing or evaluating secure system architectures for military or mission-critical systems.
- Familiarity with digital engineering environments, secure development practices, and model-based documentation.
- Strong analytical, communication, and documentation skills.
- Ability to travel as program needs require.