Information Systems Security Engineer (ISSE)

About The Position

Requirements

• Active DOD Top Secret/SCI + Poly security clearance.
• Minimum 5 years of direct experience in Risk Management Framework (RMF), Joint SAP Implementation Guide, or ICD 503 processes.
• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, Engineering, or a related field.
• Familiarity with vulnerability scanning tools, STIG compliance, Security Content Automation Protocol (SCAP), and security event information management (SIEM).
• Knowledge in Infrastructure-as-Code and scripting technologies such as Ansible, Terraform, PowerShell, or Bash.
• 3 years administering Kubernetes (OpenShift) and/or DoD cloud environments.

Nice To Haves

• Prior DoD cybersecurity engineering experience.
• Familiarity with enclave and mission system architectures.
• Strong communication skills and ability to interface with program managers, developers, and system administrators.
• A vendor-neutral certification for experienced professionals focusing on cloud security architecture, data security, and operations (e.g., Certified Cloud Security Professional (CCSP), CompTIA Cloud+, or AWS Certified Security).

Responsibilities

• Design, implement, and manage security solutions for Kubernetes (OpenShift) and DoD cloud environments, including firewalls, intrusion detection/prevention systems, endpoint protection, and encryption mechanisms.
• Conduct regular security assessments to identify vulnerabilities and weaknesses in systems, networks, and applications.
• Develop and implement incident response plans for Kubernetes (OpenShift) and DoD cloud environments. Monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents.
• Manage the risk management cycle for Kubernetes (OpenShift) and DoD cloud environments, coordinating with project teams to track risks, accreditation status, and reporting.
• Prepare and maintain comprehensive security documentation, including System Security Plans (SSP), Security Test Plans (STP), Plans of Action and Milestones (POA&M), and other required artifacts.
• Ensure Kubernetes (OpenShift) and DoD cloud environments adhere to relevant security standards and regulations, such as NIST 800-53, DoD 8500 series, and other industry-specific frameworks.
• Work closely with cross-functional teams to integrate security into all phases of the development lifecycle. Provide expert-level security guidance and support to engineering teams.
• Perform Test and Evaluation (T&E); interview system SMEs; validate physical controls; review HW/SW lists; assess topology and TPPS. Additionally, document and provide on-site assessments.
• Stay current with the latest security trends, threats, and technologies related to Kubernetes and container orchestration. Recommend and implement improvements to enhance the security posture of Kubernetes (OpenShift) and DoD cloud environments.

Benefits

• Healthcare benefits.
• Wellness programs.
• Financial benefits.
• Retirement plans.
• Family support programs.
• Continuing education opportunities.
• Flexible time off benefits.