Cloud Information System Security Engineer (ISSE) – Senior #1708324

About The Position

Requirements

• U.S. Citizenship is required
• Must possess an active Top Secret (TS) clearance at the time of application
• This position requires working onsite at one of the following locations, 5 days per week: Downtown Washington, DC; Huntsville, AL; or Clarksburg, WV
• Bachelor's degree in Computer Science, Information Systems, Cybersecurity, Engineering, or a related technical discipline; or equivalent combination of education, training, and work experience.
• Eight (8) or more years of progressive experience supporting federal information systems security engineering; in absence of years of experience, certifications or past work may be used to show the level of experience needed to perform at this level.
• Demonstrated experience supporting cloud-hosted and hybrid systems through the full RMF lifecycle, including initial ATO and continuous monitoring.
• Hands-on experience designing and implementing security controls aligned to NIST SP 800-53.
• Experience supporting systems categorized under FIPS 199 (Moderate and High), including National Security Systems (NSS), as applicable.
• Proven experience collaborating with system owners, architects, developers, and ISSOs to remediate technical security gaps and close POA&Ms.
• Experience developing and maintaining RMF documentation and supporting evidence within a Governance, Risk, and Compliance (GRC) tool.
• Expertise in cloud security architecture and engineering (IaaS, PaaS, SaaS).
• In-depth knowledge of RMF and federal information security compliance requirements.
• Experience implementing and validating controls related to identity and access management, centralized logging, vulnerability management, and configuration baselines.
• Ability to translate security requirements into actionable technical designs.
• Strong documentation, analytical, and communication skills.
• Ability to operate effectively across large, multi-system enterprise environments.

Nice To Haves

• CISSP (Associate or Full), CCSP, or other senior-level cybersecurity certifications aligned to RMF and cloud security engineering.

Responsibilities

• Provide senior-level security engineering support for cloud and hybrid information systems.
• Design, implement, and validate technical security controls to support ATO and ongoing authorization.
• Advise system owners and technical teams on secure cloud architectures, control inheritance, and authorization boundary design.
• Support implementation of enterprise security capabilities, including centralized logging and monitoring.
• Lead or support preparation and maintenance of RMF artifacts, including system security plans and control implementation descriptions.
• Support POA&M remediation and security impact analysis for system changes.
• Coordinate with assessment teams to resolve technical and documentation rework efficiently.
• Serve as a senior technical advisor on cloud security risk and compliance.
• Mentor mid- and junior-level security engineers.
• Contribute to process improvement initiatives focused on ATO quality and timeliness.

Benefits

• comprehensive health, dental, vision, pet, and legal insurance
• 401(k) retirement matching
• paid leave
• paid holidays
• health and wellness programs
• employer-paid life and disability insurance
• professional development
• education benefits