Information Systems Security Engineer 2

About The Position

Requirements

• 14+ years of cybersecurity experience in engineering, compliance, or risk management
• Bachelor's degree (or higher) in a technical discipline (e.g., Cybersecurity, Computer Science, Information Systems, Engineering)
• Active TS/SCI clearance with Polygraph (NSA requirement)
• Fully cleared with MPO
• One of the following certifications: CISSP (Certified Information Systems Security Professional) or CASP+ (or SecurityX equivalent)

Nice To Haves

• Strong expertise in: RMF implementation and lifecycle management
• NIST SP 800-53 security controls
• NIST SP 800-37 Risk Management Framework
• Security assessment and authorization (A&A) processes
• Experience working in classified or highly secure government environments
• Knowledge of Zero Trust security principles and architecture
• Experience supporting or familiarity with: NLCC (National Leadership Command Capability)
• NC3 (Nuclear Command, Control, and Communications)
• Nuclear Command and Control systems
• NSA cryptography methodologies and standards

Responsibilities

• Apply the Risk Management Framework (RMF) in accordance with NIST SP 800-37 and NIST SP 800-53 to assess, authorize, and monitor systems
• Conduct comprehensive risk assessments, vulnerability analysis, and security evaluations
• Support the design, implementation, and maintenance of Zero Trust architectures
• Develop and maintain system security documentation, including SSPs, POA&Ms, and security controls
• Collaborate with system engineers, architects, and stakeholders to ensure secure system design and integration
• Evaluate security controls for effectiveness and compliance with federal and agency requirements
• Support continuous monitoring efforts and incident response activities
• Provide technical guidance on cybersecurity best practices and evolving threats