Information Systems Security Engineer (ISSE) - U.S. Navy Programs

About The Position

Requirements

• Bachelor's degree in Computer Information Systems, Systems Security Engineering, Computer Science, or related field and 3 years work experience or High School Diploma and at least nine (9) years of technical IT experience on programs and contracts of similar scope, type, and complexity
• Successful applicants must either have an active government security clearance or the ability to receive approval upon position acceptance.
• Must have a valid US passport or the ability to obtain one upon position acceptance.
• CompTIA Security+ or CCNA-Security, CySA+, GICSP, GSEC, CND, SSCP
• Must be able to obtain an OS certification within 90 days of hire (MD-102 or AZ-104)
• Position requires the candidate to travel at least 10% of the time
• This position requires an on-site workload at Land Based Engineering Site (LBES) for at least 50% of the time
• US Citizenship

Nice To Haves

• Knowledge of the fundamental concepts, practices, and procedures associated with industrial control systems
• Familiarity with Linux, Windows, and VxWorks OS
• Experience with vulnerability assessment tools including ACAS and HBSS

Responsibilities

• Perform analysis and evaluation to design, implement, test and field secure systems, networks, and architectures
• Install and configure secure hardware and software systems and otherwise maintain the program’s technological infrastructure
• Conduct regular security audits and ensuring that systems are up-to-date with security patches
• Provide technical support to users and troubleshooting security or other related issues as they arise
• Manage user accounts and access to systems
• Perform data backups and disaster recovery procedures
• Assessing and strengthening system compliance against NIST, DoD, and Navy security requirements to include the NIST 800-53 controls and DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs)
• Develop, implement, and enforce information systems security policies ensuring system security requirements are addressed during all phases of the acquisition and Information System (IS) lifecycle.
• Conduct certification and testing in accordance with the Risk Management Framework (RMF) and National Institute of Standards and Technology (NIST) policy; identify deficiencies and providing recommendations of risk mitigation to customer.
• Support the Government to resolve conflicting system security engineering requirements.
• Develop program technical publications such as Systems Engineering Plans (SEP), Technical Plans, Analyses and Reports, Risk Assessments, Security Concepts of Operations (SECONOP), Program Protection Plan, Anti-Tamper Plan, Cybersecurity Strategy, Technology Development Strategies, Test Plans, procedures and reports, System Security Plans
• Coordinating with other system SMEs to identify and develop authorization boundary diagrams, architecture diagrams, and hardware and software inventories

Benefits

• health
• life
• disability
• financial
• retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs