Security Systems Engineer - ITAR/CUI
Siemens Digital Industries Software · Charlotte, NC
- Hybrid
- Full-time
- $140,000 / year
- Charlotte, NC
Job highlights
- Engineer secure systems for sensitive data protection.
- Ensure ITAR, CUI, EAR, and CMMC compliance.
- Deploy and maintain secure government environments.
- Automate security functions and processes.
- Collaborate on advanced cybersecurity initiatives.
About the role
About Siemens Digital Industries Software
Siemens Digital Industry Software is at the forefront of digital transformation, creating technology solutions that enable businesses to thrive in an increasingly connected world. Our Global Technology Infrastructure team plays a crucial role in maintaining the security and integrity of our digital engineering environments, ensuring compliance with industry-leading standards.Position Overview
We are looking for passionate, innovative hands-on professionals to join our team. We are seeking highly skilled Security Systems Engineers to be part of a team responsible for ensuring the security and compliance with protecting sensitive data that fall under U.S. rules like ITAR, CUI, and EAR.As a security systems engineer, you must be a technically strong individual who is a US Person with a passion for cybersecurity and a desire to make a tangible impact. In this role you will be responsible for deployment and maintaining our Gov Secure Chambers, ensuring compliance with the latest CMMC L2 rules built around the NIST 800-171 Controls.
Key Responsibilities
- Engage with internal stakeholders, deploy and support highly secure system environments
- Automate systems and support functions
- Lead efforts to maintain and improve secure chambers to meet and exceed Industry security standards
- Collaborate with cross-functional teams to ensure all security measures are up-to-date
- Provide expert guidance on ITAR, CUI and EAR compliance to internal stakeholders, ensuring that all aspects of the infrastructure adhere to the necessary standards
- Stay updated on the latest developments in CMMC and other relevant cybersecurity frameworks to proactively address any changes or enhancements needed.
Qualifications
- Bachelor’s degree in Cybersecurity, Engineering, Computer Science, Information Technology, or a related field
- Experience with the fundamentals of Linux / Windows administration and scripting languages (e.g Shell scripts, Python)
- Familiarity with using virtualization technologies like VMware and Proxmox
- 8+ years of IT work experience managing information security and complex network and information security appliances as a Network Security Administrator, Specialist, or Engineer
- Certified CMMC Professional (CCP) certification is a plus
- 3 years of experience working in enterprise virtualization platforms for on-prem cloud solutions like Proxmox , OpenStack
- 3 years of experience working with infrastructure monitoring services including Prometheus/Grafana, open-source systems metrics (such as Zabbix or CheckMk), experience with security tooling for vulnerability scanning and penetration testing
- 3+ years’ experience working with ServiceNow ticketing systems
- 5+ years working with Jira project tracking
- Extensive experience in cybersecurity, with a focus on maintaining secure environments compliant with CMMC standards.
- Strong understanding of the Cybersecurity Maturity Model Certification (CMMC) framework and its application in a global organization.
- Experience architecting solutions with securing highly sensitive data
- Proven ability to conduct thorough security assessments, identify vulnerabilities, and implement effective mitigation strategies.
- Excellent communication skills, with the ability to translate complex technical requirements into actionable plans.
- A proactive approach to problem-solving, with a keen eye for detail and a commitment to excellence.
- Experience working in a global organization is a plus.
- Bachelor’s degree in Cybersecurity, Engineering, Computer Science, Information Technology, or a related field is preferred.
We are an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.
Qualified Applicants must be legally authorized for employment in the United States. Qualified Applicants will not require employer sponsored work authorization now or in the future for employment in the United States.
Why us?
Working at Siemens Software means flexibility - Choosing between working at home and the office at other times is the norm here. We offer great benefits and rewards, as you'd expect from a world leader in industrial software.A collection of over 377,000 minds building the future one day at a time in over 200 countries. We're dedicated to equality, and we welcome applications that reflect the diversity of the communities we work in. All employment decisions at Siemens are based on qualifications, merit, and business need. Bring your curiosity and creativity and help us shape tomorrow!
Siemens Software. Transform the Everyday with Us
#SWSaaS
Key skills/competency
- Security Systems Engineering
- ITAR/CUI/EAR Compliance
- CMMC Framework
- NIST 800-171
- Linux/Windows Administration
- Scripting (Shell, Python)
- Virtualization (VMware, Proxmox)
- Infrastructure Monitoring (Prometheus, Grafana)
- Vulnerability Scanning
- Penetration Testing
Skills & topics
- Security Systems Engineer
- Cybersecurity
- ITAR
- CUI
- EAR
- CMMC
- NIST
- Linux
- Windows
- Python
- VMware
- Proxmox
- Prometheus
- Grafana
- Vulnerability Scanning
- Penetration Testing
- ServiceNow
- Jira
- Secure Chambers
- US Person
How to get hired
- Tailor your resume: Highlight experience with ITAR, CUI, EAR, CMMC, NIST 800-171, and secure chamber deployment.
- Showcase technical skills: Emphasize Linux/Windows administration, scripting (Python, Shell), virtualization, and monitoring tools.
- Address compliance expertise: Detail your experience with cybersecurity frameworks and architecting secure solutions.
- Prepare for security questions: Be ready to discuss vulnerability assessments and mitigation strategies.
- Demonstrate US Person status: Ensure your eligibility under ITAR/EAR regulations is clear.
Technical preparation
Master Linux/Windows administration and scripting.,Gain expertise in VMware and Proxmox virtualization.,Learn Prometheus/Grafana for infrastructure monitoring.,Practice vulnerability scanning and penetration testing.
Behavioral questions
Describe a complex security issue you resolved.,How do you ensure compliance with regulations?,How do you handle conflicting stakeholder requirements?,Discuss your approach to continuous learning in cybersecurity.
Frequently asked questions
- What does it mean to be a "US Person" for this Security Systems Engineer role at Siemens?
- Being a "US Person" for this role at Siemens Digital Industries Software means you meet the requirements of U.S. export control laws, specifically ITAR and EAR. This typically includes being a U.S. citizen, lawful permanent resident (green card holder), or certain other protected individuals. This is crucial because the role involves working with sensitive data and technologies subject to these regulations.
- How important is the CMMC Professional (CCP) certification for the Security Systems Engineer position?
- While a Certified CMMC Professional (CCP) certification is a plus and demonstrates a strong understanding of CMMC requirements, it is not strictly mandatory. The job description emphasizes extensive experience in cybersecurity, maintaining secure environments compliant with CMMC standards, and a strong understanding of the CMMC framework. Therefore, extensive practical experience in these areas can also be highly valuable.
- What types of virtualization platforms are used by the Security Systems Engineer team at Siemens?
- The Security Systems Engineer team at Siemens Digital Industries Software has experience with enterprise virtualization platforms for on-prem cloud solutions. Specifically mentioned are Proxmox and OpenStack. Familiarity with VMware is also listed as a qualification, suggesting a diverse virtualization environment.
- What are the primary compliance frameworks a Security Systems Engineer needs to be familiar with at Siemens?
- For this Security Systems Engineer role at Siemens Digital Industries Software, a strong understanding of U.S. regulations like ITAR, CUI, and EAR is essential. The primary cybersecurity framework emphasized is the Cybersecurity Maturity Model Certification (CMMC), particularly CMMC L2 rules built around NIST 800-171 Controls. Staying updated on CMMC and other relevant frameworks is a key responsibility.
- What scripting languages are most relevant for the Security Systems Engineer role?
- The Security Systems Engineer role requires proficiency in scripting languages to automate systems and support functions. The job description specifically mentions Shell scripts and Python as examples of relevant languages. Experience with these can significantly contribute to the automation and efficiency of secure system deployments and maintenance.
- What does Siemens Digital Industries Software offer in terms of work flexibility for this Security Systems Engineer position?