Information System Security Engineer (ISSE)
About The Position
At Accenture Federal Services, nothing matters more than helping the US federal government make the nation stronger and safer and life better for people. Our 13,000+ people are united in a shared purpose to pursue the limitless potential of technology and ingenuity for clients across defense, national security, public safety, civilian, and military health organizations. Join Accenture Federal Services, a technology company and part of global Accenture, to do work that matters in a collaborative and caring community, where you feel like you belong and are empowered to grow, learn and thrive through hands-on experience, certifications, industry training and more. Join us to drive positive, lasting change that moves missions and the government forward! Accenture Federal Services is looking for an Information System Security Engineer to join our team and support our client in the Northern VA area. The ISSE will work as part of a team reviewing and assessing Risk Management Framework (RMF) authorization body of evidence for classified information systems, to include: System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Continuous Monitoring Plan, Incident Response Plan, Access Control Plan, Security Assessment Plan, etc.
Requirements
- 5 years of implementing NIST 800-53, Rev 4 and the Risk Management Framework (RMF)
- 5 years of experience with Windows and/or Linux environments
- 5 years of experience with virtualization or cloud environments
- 2 years of using information security and assurance practices and principles
- Experience with MS Active Directory, Splunk, ACAS/Nessus, McAfee, Windows, Linux, AWS Security, etc.
- DoD 8570 IAT Level II certification or higher (e.g. Sec+, CISSP, CASP, etc.)
- Experience working with Government personnel
- An active TS/SCI level clearance required
Nice To Haves
- ACAS/Nessus for scanning experience
- Experience utilizing SIEM/Splunk to configure and operate SIEM, create dashboards, reports
- Experience with Incident handling procedures
- Other Security related certifications (Cloud, SIEM, forensics, Linux, Windows, etc)
- Experience working in a DevSecOps project environment
- Formerly or currently a system administrator, developer, or engineer
- JSIG or ICD 503 compliance
- Strong verbal and written communication skills
- Able to engage with users in a professional manner and present technical concepts plainly to semi-technical customers
- Ability to work in a matrixed team environment and support multiple different efforts as needed
- Desire to learn new technologies and tools and willing to share your experience with the team
Responsibilities
- Review new and existing systems for technical compliance with IA directives and protection of data at all classification levels including SCI
- Advise on in-depth security design review and threat/risk assessments
- Provide inputs to technical artifacts, including Plans of Action and Milestones (POA&Ms), Security Control Traceability Matrices (SCTM), and Risk Assessment Reports (RARs)
- Conduct site visits (as required) and assessments to inspect IA plans and security control implementations and support Incident Response Team (IRT) activities.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
