Cleared On Site Information Systems Security Engineer (ISSE) (5362)

About The Position

Requirements

• Active TS/SCI clearance required
• Minimum of 5 years of professional experience supporting cybersecurity, information assurance, security engineering, or related disciplines
• Experience supporting Risk Management Framework (RMF) activities and NIST-based security compliance programs
• Experience developing and maintaining SSPs, POA&Ms, security control documentation, and related authorization artifacts
• Experience conducting vulnerability assessments, security testing, and risk analysis activities
• Experience evaluating and implementing security controls in accordance with federal cybersecurity requirements
• Familiarity with NIST 800-53, NIST 800-37, and federal information security requirements
• Experience supporting Authorization to Operate (ATO) activities and continuous monitoring programs
• Experience reviewing system architectures, boundary definitions, access controls, and security configurations
• Knowledge of vulnerability management processes and remediation methodologies
• Strong analytical, troubleshooting, and problem-solving skills
• Ability to assess technical findings and develop practical risk mitigation recommendations
• Strong written and verbal communication skills
• Ability to work independently and collaboratively in a team environment

Nice To Haves

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Engineering, Information Systems, or related field
• Experience supporting federal government, law enforcement, intelligence community, or national security programs
• Experience supporting cloud-based environments and cloud security controls
• Experience supporting Governance, Risk, and Compliance (GRC) platforms
• Familiarity with enterprise security tools including vulnerability scanning and security monitoring solutions
• Experience supporting security audits, assessments, and compliance reviews
• Familiarity with Agile development methodologies and DevSecOps practices
• One or more of the following certifications preferred: Security+, CAP (Certified Authorization Professional), CISSP Associate, SSCP, GSEC, CASP+
• Other relevant cybersecurity certifications

Responsibilities

• Support the design, implementation, and maintenance of security controls for enterprise information systems and applications
• Develop, maintain, and update security documentation including System Security Plans (SSPs), security control implementation documentation, mitigation plans, and supporting RMF artifacts
• Assist with system categorization, authorization boundary development, and security architecture documentation
• Create and maintain security test plans, procedures, and supporting documentation to validate implementation of security controls
• Perform security assessments, control validations, vulnerability analyses, and risk evaluations to identify security weaknesses and recommend corrective actions
• Support vulnerability remediation activities and validate effectiveness of implemented mitigations
• Analyze security findings and recommend technical solutions to reduce risk and improve security posture
• Support audit preparation, compliance assessments, and continuous monitoring activities
• Review system configurations, software inventories, hardware inventories, and user access controls to ensure compliance with security requirements
• Assist in the development and maintenance of business impact analyses, continuity of operations documentation, and security-related operational procedures
• Monitor security alerts, vulnerability reports, and threat information to identify potential risks to information systems
• Collaborate with system administrators, developers, cybersecurity personnel, and government stakeholders to address security requirements throughout the system lifecycle
• Participate in security engineering reviews, architecture discussions, and technical planning activities
• Support implementation of security best practices and contribute to program cybersecurity initiatives

Benefits

• health insurance
• paid leave
• retirement