SIPR Information Systems Security Engineer (ISSE)

About The Position

Requirements

• Active Top Secret Security Clearance.
• Minimum 12 years of relevant cybersecurity, information assurance, or security engineering experience.
• Bachelor's degree in a related field may substitute for 5 years of experience.
• Current DoD 8140 IAT Level II compliant certification (e.g., CompTIA Security+).
• Proven experience as a Security Engineer, Information Systems Security Engineer (ISSE), or similar cybersecurity role.
• Experience supporting classified systems and secure environments, including SIPRNet or equivalent classified networks.
• Strong knowledge of: Network security principles, Operating systems security, Database security, Application security, Identity and Access Management (IAM), Encryption technologies
• Experience with vulnerability scanning, security assessment, and penetration testing tools.
• Familiarity with cybersecurity frameworks and standards including: NIST Risk Management Framework (RMF), DoD Cybersecurity Controls, Security Technical Implementation Guides (STIGs)
• Ability to analyze security incidents, conduct root cause analysis, and implement effective corrective actions.
• Excellent communication, documentation, analytical, and problem-solving skills.
• Experience configuring and securing classified systems in secure facilities.

Nice To Haves

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related discipline.
• Advanced cybersecurity certifications such as: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM)
• Experience with cloud security architectures and security solutions.
• Knowledge of regulatory and compliance requirements such as: GDPR, HIPAA, Federal cybersecurity mandates
• Experience supporting Authority to Operate (ATO) processes and RMF package development.
• Demonstrated commitment to staying current on emerging cybersecurity threats, technologies, and industry best practices.

Responsibilities

• Design, deploy, and maintain security solutions including multi-factor authentication (MFA), centralized logging, encryption technologies, access control mechanisms, and endpoint security controls.
• Implement security configurations and hardening measures across classified systems and networks.
• Develop secure network architectures that reduce attack surfaces and protect critical assets.
• Conduct vulnerability assessments, security audits, and configuration compliance reviews.
• Analyze assessment findings and collaborate with technical teams to remediate vulnerabilities and security gaps.
• Utilize vulnerability scanning and security assessment tools to identify and prioritize risks.
• Develop and enhance incident response procedures and security monitoring capabilities.
• Monitor security logs, alerts, and system activity to identify potential threats and suspicious activity.
• Lead investigations of security incidents and breaches, performing root cause analysis and recommending corrective actions.
• Support the development, implementation, and enforcement of cybersecurity policies, standards, and procedures.
• Ensure compliance with applicable DoD, NIST, and organizational cybersecurity requirements.
• Conduct periodic compliance assessments and security reviews to validate adherence to established controls.
• Implement encryption technologies, data protection measures, and privacy controls to safeguard sensitive information.
• Support identity and access management (IAM) initiatives and privileged access controls.
• Assist with security documentation, accreditation activities, and continuous monitoring efforts.