Information System Security Engineer

About The Position

Requirements

• Must have at least 12 years of experience working as an ISSE on a large technical program.
• Must have a solid understanding of security practices and policies and hands‐on vulnerability testing experience using Customer tools.
• Must have experience applying Risk Management Framework.
• Must have experience formulating and assessing IT security policy.
• Must have demonstrated knowledge of and experience with common security tools, such as Nessus, NMAP and Wireshark hardware/software security implementation, communication protocol, encryption techniques/tools, and web services.
• Must have experience with secure configurations of commonly used desktop and server operating systems.
• Must be comfortable working on multiple systems and components simultaneously in various configurations.
• Must have strong verbal and written communications skills.
• Must be committed to adopting and adhering to best practices.
• Must be able to effectively plan and prioritize tasking and communicate clearly regarding technical options and trade‐offs.
• Must be capable of performing high quality work both independently and with a team in a fast‐moving environment.
• CLEARANCE IS REQUIRED TO BE CONSIDERED FOR THIS ROLE Clearance Required: Active TS/SCI clearance with Polygraph

Nice To Haves

• Bachelor's degree in Computer Science, Information Assurance, Information Security System Engineering, or a related discipline.
• Five ﴾5﴿ years of experience with Defense in Depth Principals/technology ﴾including access control, authorization, identification and authentication, public key infrastructure, network and enterprise security architecture﴿ and applying risk assessment methodology to system development.
• DoD 8570 compliance with IASAE Level 2 or 3.
• Information Systems Security Engineering Professional ﴾ISSEP﴿ Certification.
• Computer Information Systems Security Professional ﴾CISSP﴿ Certification.
• Experience developing/implementing integrated security services management processes, such as assessing and auditing network penetration testing, anti‐virus planning assistance, risk analysis, and incident response.
• Experience providing information assurance support for application development that includes system security certifications and project evaluations for firewalls that encompass the development, design, and implementation.
• Experience with penetration testing tools.
• Experience with scripting languages.

Responsibilities

• Ensuring that system security requirements are properly defined, implemented, and maintained across all phases of the system lifecycle
• Validating and verifying system security requirements
• Developing secure architectures for large-scale systems, major system components, and interfacing environments
• Identifying and implementing appropriate security frameworks and solutions to ensure consistent application of enterprise security policies
• Recommending and developing technical solutions, standards, and products aligned with current and future security architectures
• Assessing and mitigating system security risks and threats throughout the program lifecycle
• Leading or contributing to security planning, risk analysis, certification, and continuous monitoring activities
• Evaluating system implementations against multiple compliance frameworks and recommending enhancements
• Ensuring that all systems meet customer-defined security requirements
• Analyzing the impact of new development on system security posture
• Reviewing and testing critical software
• Identifying and remediating vulnerabilities across the environment
• Ensuring that hardware and software architectures align with strict security requirements
• Auditing system configurations
• Managing configuration control for security-relevant components
• Enforcing security policies, standards, and methodologies across distributed systems
• Serving as a Subject Matter Expert in security architecture, providing guidance to program managers, customer stakeholders, and internal teams
• Actively participating in Agile processes, including Program Increment Planning
• Supporting cross-functional teams through strong collaboration and communication skills
• Contributing to risk management, security control assessments, continuous monitoring, and broader information assurance activities
• Supporting security testing efforts and advancing team knowledge of vulnerabilities, attack vectors, and mitigation strategies

Benefits

• 10% Employer Contribution to 401K; Immediately Vested
• 5 Weeks Paid Time Off (PTO) up to 7 weeks
• Access to Premium Healthcare/Dental/Vision Available
• $2500+ Training
• Paid Referral
• Company Profit Sharing