Information Systems Security Engineer (ISSE)

About The Position

Requirements

• Clearance: TS/SCI with Poly
• 5+ years of experience demonstrating and maintaining security posture of cloud environments
• Experience managing the full lifecycle of, and workflows for, security accreditation projects under the ICD503 Rev. 4 framework
• Knowledge of the Risk Management Framework (RMF), system security system plans (SSP), and all security relevant documentation for computer systems and applications
• Knowledge in cybersecurity best practices and security risk assessment technologies
• Experience using knowledge and project management tools in an Agile working environment, e.g., Jira, Confluence, etc.
• Experience using Authorization and Accreditation tools, such as GreenLight

Nice To Haves

• Demonstrated ability to effectively engage with Sponsor Information System Security Managers (ISSMs) to ensure security compliance of systems
• Experience obtaining IC reciprocity for at least one security accreditation project

Responsibilities

• Ensures that solutions adhere to customer security guidelines, requirements, and industry best practices
• Maintains security posture of customer cloud environments
• Leads authorization and accreditation efforts in support of customer applications
• Drafts and maintains security and contingency plans and conducts complex risk and vulnerability assessments
• Analyzes policies and procedures against Federal laws and regulations and provides recommendations for closing gaps
• Develops and completes system security plans and contingency plans
• Recommends system enhancements to improve security deficiencies
• Conducts security program audits and develops solutions to lessen identified risks
• Provides information assurance support for the development and implementation of security architectures to meet new and evolving security requirements