Information System Security Engineer (ISSE)
About The Position
Allied Consultants, Inc is a proudly Austin based firm with over 34 years of experience delivering top-tier technical and business professionals within Texas State Agencies. We are currently seeking an experience Information System Security Engineer (ISSE) to play a key role within a high-impact technical services team. At Allied Consultants, we value our consultants and are committed to providing an exceptional experience including: Highly competitive pay rates Local support staff for responsive, personal service Comprehensive benefits package, including: Medical insurance (with employer cost sharing) Life insurance A 401(K) plan with company match Flexible spending through a cafeteria plan Candidates selected for interviews will be subject to a criminal background check and may be required to pass a drug screening, in compliance with federal and state regulations. All offers of employment are contingent upon successful completion of these checks. Allied Consultants is a proud to be an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
Requirements
- 12 deep focus on: Governance, Risk, and Compliance (GRC), Enterprise Security and Security Architecture, Vulnerability Management and Penetration Testing , Cloud Security and hybrid environments
- 10 Proven experience owning SSP development end to end
- 10 Hands on experience with CMS MARS E v2.2 or comparable federal/state security frameworks
- 10 Strong expertise in: Control implementation documentation, Audit evidence collection and validation, POA&M creation, tracking, and remediation management
- 8 Ability to translate technical security issues into compliance aligned remediation actions
- 8 Strong stakeholder management skills across security, infrastructure, and application teams
- 8 Excellent written and verbal communication skills, particularly for executive stakeholders
- 8 Knowledge of NIST 800 53, NIST RMF, and privacy controls
- 8 Knowledge of Secure SDLC and DevSecOps practices
Nice To Haves
- 5 Preferred Experience operating in multi-vendor, multi-platform environments
- 5 Preferred Demonstrated ability to reduce repeat audit findings and improve compliance maturity
- 5 Preferred Experience mentoring or guiding teams on security governance best practices
- 1 Preferred Experience supporting HHSC systems, including SSP development and compliance
Responsibilities
- Lead end to end System Security & Privacy Plan (SSP/SSPP) development, maintenance, and updates for enterprise systems
- Drive remediation activities through POA&M management, ensuring timely closure of compliance gaps
- Translate penetration testing and vulnerability findings into actionable remediation work items (EPICs/user stories)
- Coordinate with application, infrastructure, and security teams to validate remediation through re-testing and evidence
- Oversee risk-based vulnerability management, including prioritization and SLA-driven remediation
- Provide governance oversight for endpoint protection, web application security, and cloud security controls
- Produce assessor ready documentation, including configurations, monitoring evidence, approvals, and incident traceability
- Support continuous audit readiness and reduce repeat findings through disciplined governance and documentation practices
Benefits
- Medical insurance (with employer cost sharing)
- Life insurance
- A 401(K) plan with company match
- Flexible spending through a cafeteria plan
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
