Information System Security Engineer (ISSE)

About The Position

Requirements

• Requires a DoD Secret clearance with the ability to obtain a TS/SCI clearance.
• BS/BA in Cybersecurity, Computer Science, Information Technology, or related technical discipline OR
• Associate's degree with additional relevant experience may be substituted for a BS/BA.
• Minimum of 10 years of experience in cybersecurity, with a focus on system security testing, SIEM management, system security engineering, or A&A processes.
• Expertise in configuring and managing SIEM platforms (e.g., Splunk, Elastic, ArcSight) for threat detection and incident response.
• Experience in system security engineering, including secure system design, security control implementation, and system hardening for DoD environments.
• Strong understanding of zero trust architecture principles and practical implementation in DoD environments.
• Experience supporting the A&A process, including preparing RMF artifacts, conducting security control assessments, and interfacing with authorizing officials.
• Proficiency in security testing tools (e.g., Tenable, Nessus, Burp Suite, Wireshark) and techniques (e.g., penetration testing, vulnerability scanning).
• Experience securing Microsoft Windows, Linux, Active Directory, and virtualized/containerized environments (e.g., VMware, Kubernetes).
• Proficiency with scripting and automation tools (e.g., PowerShell, Python, Ansible) for security testing, SIEM configurations, and system security engineering.
• Ability to complete technical tasks within required timeframes without supervision.
• Excellent communication and interpersonal skills, with a customer-focused mindset.
• Capacity to learn new systems rapidly and adapt to evolving security technologies.

Nice To Haves

• 5-10 years of experience as an ISSE or in a technical cybersecurity role.
• Prior experience supporting USINDOPACOM or other DoD commands.
• Hands-on experience implementing zero trust solutions, such as identity-based access controls, micro-segmentation, or behavioral analytics.
• Experience optimizing SIEM platforms for large-scale DoD environments or integrating with SOAR tools (e.g., Splunk SOAR, Palo Alto XSOAR).
• Familiarity with cloud security (e.g., Azure, AWS) and containerized environments (e.g., Docker, Kubernetes).
• IAT Level III or IAM Level II certification (e.g., CISSP, CISM, CASP+).
• Experience with additional security tools such as Palo Alto firewalls, Wazuh, or CrowdStrike.
• Experience with DoD A&A tools such as eMASS or Xacta.

Responsibilities

• Conduct hands-on security testing and vulnerability assessments, including penetration testing, configuration analysis, and security control validation.
• Configure and optimize SIEM platforms (e.g., Splunk, Elastic, ArcSight) to collect, correlate, and analyze security event data for real-time threat detection.
• Perform system security engineering tasks, including designing secure system architectures, implementing security controls, and hardening systems to meet DoD standards.
• Develop and implement zero trust security measures, such as least privilege access, micro-segmentation, and continuous authentication across systems.
• Support the A&A process by preparing security documentation, conducting risk assessments, and ensuring compliance with DoD standards (e.g., RMF, NIST 800-53).
• Provide technical expertise to identify, analyze, and mitigate vulnerabilities in Windows, Linux, Active Directory, and virtualized/containerized environments.
• Analyze and recommend zero trust strategies, integrating identity-based access controls, network segmentation, and continuous monitoring solutions.
• Develop detailed security reports, SIEM dashboards, and A&A artifacts for high-level briefings and system security engineering efforts.
• Utilize security tools (e.g., Tenable, Nessus, Splunk, Wireshark) to generate actionable security data and validate system integrity.
• Coordinate cross-functional meetings to align stakeholders on security testing outcomes, system security engineering efforts, zero trust initiatives, and A&A requirements.
• Support resource allocation to ensure security testing, SIEM configurations, system security engineering, and A&A tasks are completed on time and within budget.
• Maintain knowledge management for cybersecurity projects, including SIEM configurations, system security engineering, zero trust implementations, and A&A documentation.
• Establish effective communication with internal and external stakeholders to promote security best practices and collaboration.
• Provide daily status updates in a scrum environment and collaborate in a team setting.
• Participate in technical discussions, offering SME-level recommendations on SIEM configurations, system security engineering, zero trust architectures, and A&A processes.
• Work independently without supervision to meet mission objectives.
• Up to 25% travel may be required.

Benefits

• health insurance
• paid leave
• retirement