Information Systems Security Engineer (ISSE)

About The Position

Requirements

• 7+ years with Bachelor's Degree and progressive responsibility with hands-on experience as an information systems security professional
• Demonstrated proficiency and expertise in implementing and facilitating the NIST Risk Management Framework (RMF) within the DoD/IC
• Applying secure configuration concepts, protocols, and security methodologies to local and Enterprise systems
• Developing and implementing organizational-level cybersecurity programs, such as continuous monitoring, vulnerability managements, or incident response
• Capturing, analyzing, and decomposing cybersecurity requirements applicable to information systems and developing solutions to address those requirements
• Securing and evaluating information systems for compliance with DISA STIGs
• Excellent initiative, motivation, problem-solving, and analytical skills with the ability to work independently and as part of a team
• TS/SCI clearance required with ability to obtain a CI Poly
• Must meet DoD 8140/CSWF for 652-Intermedediate or be willing to obtain the appropriate credential within 6 months

Nice To Haves

• Demonstrated hands-on proficiency and expertise in configuring or operating industry-standard cybersecurity toolsets such as ACAS, Trellix, Splunk, Rapid7, and similar solutions
• Working with a wide range of vendors and technologies including Microsoft, Linux, Cisco, VMWare, NetApp, ServiceNow, etc
• Leveraging scripting (e.g., PowerShell, Python) or automation (e.g., Ansible, Chef, Puppet) to automate the implementation, testing, verification, validation, and monitoring of systems security configurations

Responsibilities

• Discovering system protection needs by assessing mission impacts, identifying relevant threats, determining required security services, evaluating applicable constraints, and documenting system protection requirements.
• Define system security requirements by developing the system security context, contributing to concepts of operations, and establishing security requirement baselines that align with organizational and regulatory expectations.
• Design system security architectures and develop detailed security designs to ensure effective integration of cybersecurity controls into system components, interfaces, and workflows.
• Assess the effectiveness of implemented protections and recommend improvements based on technical evaluations and risk findings.
• Evaluate COTS and GOTS technologies—including systems, applications, and services—to determine their suitability in meeting the organization’s INFOSEC and cybersecurity needs.

Benefits

• best-in-class medical, dental and vision plan choices
• wellness resources
• employee assistance programs
• Savings Plan Options (401(k))
• financial planning tools
• life insurance
• employee discounts
• paid holidays and paid time off
• tuition reimbursement
• early childhood and post-secondary education scholarships