Security Systems Engineer

Job Title

System Security Engineer / Cybersecurity Engineer

Position Overview

As a specialized Systems Engineer the System Security Engineer (SSE) will play a pivotal role in embedding security into every phase of the systems engineering lifecycle. This position requires planning protections against hostile activities such as reverse engineering of Critical Program Information (CPI) and malicious insertion of hardware and software components so that protection and resilience are inherent features of a system program and design. You will lead the early identification, analysis, and incorporation of security requirements, ensuring they are balanced with performance, cost, and mission objectives. Your responsibilities will extend across architecture definition, requirements traceability, design trade-offs, verification and validation, and lifecycle sustainment.

By applying System Security Engineering (SSE) principles, you will help the organization proactively address cyber threats, safeguard mission-critical functions, and preserve system integrity even under contested conditions. Your work will directly reduce the risk of costly redesigns later in the acquisition cycle, improve stakeholder confidence, and ensure that delivered systems meet both operational needs and robust security standards. Ultimately, you will be a key enabler in delivering trusted, resilient systems from concept through deployment and sustainment.

Initial Engagement Responsibilities

Key Responsibilities

1. Requirements & Architecture Integration

• Apply scientific and engineering principles to identify vulnerabilities and mitigate risks throughout the requirements and design trade space.


• Translate security controls (e.g., anti-tamper, supply chain risk management, exportability features, hardware/software assurance) into clear, actionable system specifications.


• Define and validate the security architecture boundary and characterize the system’s attack surface.

2. Program Protection & Planning

• Lead development and maintenance of the Program Protection Plan (PPP), System Security Plan (SSP), and Systems Engineering Plan (SEP), updating them at key lifecycle milestones.


• Document SSE findings and incorporate them into technical review criteria and system baselines; support decision authorities at reviews like Milestone A/B and Full-Rate Production/Deployment (FRP/FD).


• The SSE will work with the Security Classification Guide (SCG), Counterintelligence Support Plan (CISP), Criticality Analysis, Anti-Tamper (AT) Plan, and the Cybersecurity Strategy.


• The SSE will be responsible for identification of logic-bearing components, software assurance, Supply Chain Risk Management, cybersecurity, AT, and criticality analysis. 


• Embed security requirements into solicitations and Requests for Proposals (RFPs).

3. Engineering & Implementation

• Ensure systems are designed with defenses such as segmentation, isolation/partitioning, least-privilege access control, defense‑in‑depth, and secure configuration.


• Design systems to preserve core functions in adverse conditions and integrate mechanisms for anomaly detection, monitoring, response, and recovery.


• Interface effectively with external security services such as DoD Information Network environments.

4. Testing, Verification & Risk Assessment

• Align SSE with DoD’s Risk Management Framework (RMF) and integrate with traditional systems engineering risk management approaches.


• Conduct or coordinate system security developmental test and evaluation (DT&E) and collaborate with operational test teams to address vulnerabilities and resiliency.


• Perform mission‑based cyber risk assessments early, and update them regularly as threats evolve.

5. Cross-Functional Leadership

• Lead and facilitate multi‑discipline teams, including systems engineers, test, logistics, and cybersecurity personnel to perform SSE analysis and implementation.


• Educate and support the Program Manager and staff in SSE best practices, and contribute to writing SOWs and RFPs with robust security requirements.

6. Lifecycle Support & Configuration Management

• Incorporate SSE strategies into technical baseline updates ahead of every review and knowledge point.


• Support accreditation activities (e.g., Interim Authority to Test or Operate) as required.


• Ensure configuration management and patching processes minimize exposure during development, integration, T&E, production, and sustainment.

Basic Qualifications

• Bachelor's degree in an Engineering discipline, Systems Engineering, Cybersecurity, Computer Science, or related technical discipline.


• US citizenship and ability to obtain and maintain a security clearance


• Ability to perform cyber risk assessments and translate security requirements for design and implementation.


• Proficiency in supporting or executing security testing methodologies and interfacing with operational test teams.


• Strong integrator and influencer with ability to coordinate across systems engineers, cybersecurity SMEs, logistics, test, and management organizations.


• Clear communication and documentation skills for producing technical plans and responses for reviews and audits.


• Supportive and proactive contributor to program planning and acquisition documentation.

Desired Qualifications

• Knowledge of anti-tamper, software/hardware assurance, supply chain risk, and exportability features.


• Demonstrated expertise in system security engineering, particularly within defense or DoD acquisition environments.


• Hands-on experience with system architecture that includes secure design, defense-in-depth, segmentation, and continuity under threat.


• Familiarity with RMF and integration of cybersecurity into systems engineering processes.