Information Systems Security Engineer
About The Position
GovCIO is currently hiring an Information Systems Security Engineer for a program with the US Coast Guard. This position will be located in Alexandria, VA area and will be a hybrid remote position. This position focuses on maintaining compliance, ensuring operational security posture, and coordinating security documentation and activities across multiple stakeholders. The ideal candidate is detail-oriented, familiar with federal cybersecurity frameworks, and able to communicate effectively with both technical teams and senior leadership. This role requires a solid understanding of information assurance concepts, governance requirements, and accreditation processes. Applicants should be knowledgeable about RMF processes and documentation. While a high degree of technical proficiency is desired, applicants should be highly skilled in understanding and documenting technical implementations - acting as a bridge between system engineering staff, cybersecurity staff, and program leadership.
Requirements
- Bachelor's with 8+ years of cybersecurity experience (or commensurate experience)
- 6+ years of experience supporting cybersecurity or information assurance functions
- Working knowledge of: DoD Risk Management Framework (RMF), NIST SP 800-37, 800-53, and FIPS 199/200 frameworks, FISMA compliance requirements
- Experience preparing or maintaining security documentation and coordinating with government security officials
- Ability to interpret policy and translate it into actionable compliance activities
- CASP CE; CGRC (formerly CAP); CISM; CISSP (or Associate); GSLC; CCISO
- Clearance Required: Ability to maintain a Secret level clearance
Nice To Haves
- Bachelor’s degree in Cybersecurity, Information Systems, or related field (or equivalent experience)
- Experience supporting DoD programs or cross-agency initiatives related to DoD
- Familiarity with tools such as eMASS, Xacta, or other DoD-specific compliance systems
- Experience briefing management or working directly with federal program offices
Responsibilities
- Support the development, review, and maintenance of security documentation including System Security Plans (SSPs), POA&Ms, and Continuous Monitoring artifacts.
- Ensure system security controls are implemented, tested, and maintained in accordance with NIST SP 800-53, RMF, and relevant DoD directives.
- Coordinate with system owners, ISSMs, ISSOs, auditors, and external stakeholders to maintain compliance and respond to findings or inquiries.
- Monitor the security posture of systems and assist in periodic reviews, assessments, and audits.
- Participate in change control boards to evaluate the security impact of proposed modifications.
- Track and report on cybersecurity risks, vulnerabilities, and mitigations in accordance with established procedures.
- Assist with user awareness training and ensure compliance with organizational cybersecurity policies and procedures.
- Facilitate approvals for network interconnections such as the Boundary Cloud Access Point (BCAP) and DISA System/Network Approval Process (SNAP) through the provisioning of required documentation
- Support Product Teams in the preparation, response, and finding remediation for JFHQ-DoDIN Cyber Operational Readiness Assessments (CORAs)
Benefits
- Employee Assistance Program (EAP)
- Corporate Discounts
- Learning & Development platform, to include certification preparation content
- Training, Education and Certification Assistance
- Referral Bonus Program
- Internal Mobility Program
- Pet Insurance
- Flexible Work Environment
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
1,001-5,000 employees
