Job No. 155946
- Job Title:
- Chief Engineer, Software
- Employer:
-
Mercer University
- Location:
-
Warner Robins , GA
- Posting Date:
- 22-Jul-2025
- Description:
-
Job Details:
Mercer Engineering Research Center (MERC), a research institute of Mercer University, provides high quality engineering, scientific, and technical support services to both government and private industry customers.
RESPONSIBILITIES:
• May work independently or as an Information System Security Officer (ISSO) under the direction of the Cyber Technical Lead, more senior cybersecurity personnel, and/or the Information System Security Manager (ISSM) on the following tasks:
• Sustain network/information system security through testing, analysis, and application of policy and controls.
• Obtain certification and accreditation of systems, to include process support, analysis support, coordination support, security certification test support, security documentation support, investigations, software research, hardware introduction and release, emerging technology research inspections, and periodic audits.
• Conduct threat and risk analysis and analyze the business impact of new and existing systems and technologies to eliminate risk, performance, and capacity issues.
• Implement vulnerability assessments and configuration audits of operational systems, web servers, and databases to detect patterns, insecure features, and malicious activities in the infrastructure.
• Analyze, investigate, test, evaluate, and deploy security technology and procedures.
• Run diagnostics on any changes to data to verify any undetected breaches.
• Develop custom systems for specialized security features and procedures for software systems, networks, data centers, and hardware.
• Develop and implement information security standards, guidelines, and procedures.
• Observe, evaluate, and document security certification testing.
• Develop, review, and evaluate System Security Plans, System Security Authorization Agreements, systems and networks diagrams,
Security Requirements Traceability Matrices, risk assessments, and associated information system Authorization and Accreditation
documents.
• Perform security incident evidence gathering and evaluations.
• Perform incident remediation, review and analysis.
• Apply Security Technical Implementation Guides (STIGs).
• Implement government policy (i.e., NISPOM, DCID 6/3) and make process tailoring recommendations.
• Review static/dynamic analysis results and remediate.
• Conduct counteractive protocols and report incidents.
• Customize risk ratings for vulnerabilities based on company policies and maintain IT security controls documentation.
• Use OWASP testing methodology, Dynamic and Static Application Security Testing, re-engineering, automation, ASP.NET/JAVA, IDS/IPS systems, Burp Suite, Nmap, and Metasploit.
• Develop software-based remediation using Python, C#, Java, JavaScript, J-Query.
• Complies with all Executive Director approved MERC-wide policies and procedures.
• Participates in Technical Interchange Meetings with customers.
• Adheres to approved MERC MSP quality management policies and principles, and promotes an attitude of commitment to continuous quality improvement.
• Ensures thorough familiarity and awareness of all MERC core capabilities and with the MERC current and potential customer base and remains alert for any problem or opportunity that might lead to additional business for any MERC core business area.
• Submits suggestions for new business opportunities or report identified customer problems or opportunities to the Director of Acquisition Strategy through a Chief Engineer.
REQUIRED QUALIFICATIONS:
• US Citizenship is required.
• Ability to obtain and maintain a DoD Security Clearance.
• A Ph.D. degree in Cybersecurity, Computer Engineering, Computer Science, Computer Forensics, Information Assurance, or related
information security focused degree from an ABET-accredited institution; or a Master’s Degree in same and 1 year of relevant experience;
or an undergraduate degree in same and 2 years of relevant experience.
• Proficient/expert in one of the following areas, competent in two areas, and novice/beginner in the remaining areas: software security, system administration, security testing, information assurance, design, implementation, validation, and compliance.
• Certifications:
• CompTIA Security+ CE
DESIRED QUALIFICATIONS:
Certified Information Security Professional (CISP)
Top Secret Clearance
Final rank will be determined on the qualifications of the selected candidate.
Application must include a cover letter and resume.
- Contact information:
- Mercer University
- Warner Robins, GA 31207
- United States
- Employer's Website:
-
Visit Employer's website