Information System Security Engineer (ISSE)
About The Position
VTG is looking for an Information System Security Engineer (ISSE)s Levels 1 - 3 in Chantilly VA. These positions are contingent upon contract award. What will you do? An ISSE is responsible for conducting IS security engineering activities throughout the lifecycle. ISSEs are responsible for capturing and refining information protection requirements to ensure their integration into IS acquisitions and IS development through purposeful security design or configuration. The Contractor Integrates security functional requirements into existing acquisition lifecycle phases, milestones, and documents using systems engineering principles and methodologies. Contractor personnel shall be knowledgeable of best practices when implementing security controls including SW engineering methodologies, security engineering methodologies, security engineering principles, and secure coding techniques and coordinates activities with A&A stakeholders. The ISSE functions are commensurate with the IASAE position description, experience and certifications. ISSEs with Space System experience is required, specific Space System ISSE required qualifications. This IASAE experience requires working relevant types of Space systems based on location, and understanding space requirements and protection needs for integration into relevant network systems. IASAE's also participate in Space Computer Security requirement reviews or working groups as needed by locations. IASAE's also participate in the National Space INFOSEC Steering Council, among others.
Requirements
- TS/SCI with Poly required
- Bachelor's degree relevant to computer engineering, INFOSEC, information management, and/or computer science
- Level 1: 0 - 4 years relevant IA experience and IAM Level I Certification: CAP, GSLC, Sec+
- Level 2: 5 - 9 years relevant IA experience and IAM Level II Certification: CAP, GSLC, CISM, CASP, CISSP or CCISO
- Level 3: 10+ relevant IA experience and IAM Level III Certification: GSLC, CISM, CISSP OR CCISO
- Knowledge of and experience with ICD 503 and the Government's certification and accreditation process
- Networks, computer components, protocols, and COTS technology
- System methodologies including: client/server, web hosting, web content servers, policy servers, directory servers, firewalls, WAN, MAN, LAN, switches, and routers
- SW integration of COTS and GOTS products
- Virtualization platforms and technologies
- Education relevant to computer engineering, INFOSEC, information management, and/or computer science
- Experience in technical project management (Level 3)
- Configuring and supporting, at a minimum, Windows, Linux, Unix, Maces
- Configuring and supporting, at a minimum, VMware, Xen, Hyper V
- SW engineering
- Program design and implementation
- Configuration management (Level 3)
- System maintenance
- Integration testing (Level 3)
- Information Security, engineering
Responsibilities
- Conducting IS security engineering activities throughout the lifecycle.
- Capturing and refining information protection requirements to ensure their integration into IS acquisitions and IS development through purposeful security design or configuration.
- Integrating security functional requirements into existing acquisition lifecycle phases, milestones, and documents using systems engineering principles and methodologies.
- Implementing security controls including SW engineering methodologies, security engineering methodologies, security engineering principles, and secure coding techniques and coordinates activities with A&A stakeholders.
- Participate in Space Computer Security requirement reviews or working groups as needed by locations.
- Participate in the National Space INFOSEC Steering Council, among others.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
1,001-5,000 employees
