Information Systems Security Engineer

About The Position

Requirements

• 4+ years of experience with information systems security engineering
• Experience with application security standards and processes
• Experience with Accreditation and Authorization (A&A), including documentation, POAMs, and remediation
• Experience with application and data security requirements for authorities to develop and operation systems (ATD, ATO) such as encryption, role-based security, information assurance, and monitoring/auditing/reporting
• Experience with coordination with engineering team to implement security requirements
• Experience with Agile or Scrum

Responsibilities

• Lead for automated security testing efforts leveraging Sponsors enterprise scanning tools
• Responsible for creation and delivery of the Monthly Vulnerability Scans
• Responsible for creation and delivery of the Monthly Privileged Users and Admin report
• Overall Lead for ensuring systems are secure by protecting data and ensuring need to know
• Responsible for working with Tech team on creating, resolving and monitoring any necessary POAM's
• Helps PM with the Contract Security Plan
• Works with PM and customer's Information System Security Manager and INFOSEC Program Council as necessary to maintain compliance and process security relevant changes
• Authors and maintains the programs System Security Plan (SSP) for A&A
• Provides the required security education and plan to sponsor for the program
• Authors and maintains the programs Automated Information Systems (AIS) Plan

Benefits

• Wide variety of benefits offered