Specialist, Information Security Systems Engineering (ISSE)

About The Position

Requirements

• Bachelor’s Degree and a minimum of 4 years of prior relevant experience or Graduate Degree and a minimum of 2 years of prior related experience. In lieu of a degree, 8 years of prior related experience.
• DOD 8140 certification (or NIST 800-181), appropriate for the position (e.g., Sec+, SecX, CISSP)
• Top Secret Clearance with SCI required.

Nice To Haves

• Familiarity with IBM AIX, Cisco and Juniper networking equipment operating systems, Palo Alto firewalls, and VMware vCenter.
• Direct experience with cryptographic systems used to protect space/ground communications.
• Experience in configuration and use of cyber defense and vulnerability assessment tools such as ACAS, SCC and ESS.
• System testing and evaluation methods and RMF assessment methodology & process.
• Experience applying DISA System Technical Implementation Guides (STIGs) to Operating Systems, Applications, Network devices
• Experience hardening Linux and Windows based operating systems
• Experience implementing Multi-Factor Authentication (RSA SecurID or equivalent)

Responsibilities

• Knowledge of security requirements, documentation, and risk mitigation strategies.
• Experience with CNSSI 1253, DoDI 8510.01 Risk Management Framework Accreditation Process.
• Conduct ACAS (Assured Compliance Assessment Solution) vulnerability scans using Nessus Security Center, manage scan profiles, update plugins, and troubleshoot issues as needed.
• Perform annual control assessments using established test procedures to validate security controls are functioning as intended.
• Develop, track, and manage Plans of Action & Milestones (POA&Ms) for identified security weaknesses and deficiencies.
• Prepare and submit quarterly security status reports to stakeholders, documenting POA&M progress and ongoing security activities.
• Perform continuous monitoring activities, document completion of required tasks, and report any findings.
• Conduct weekly audit log reviews to identify security events including failed authentication attempts, privilege escalation, unusual activity patterns, and atypical usage.
• Conduct monthly reviews of user accounts to identify and disable inactive accounts in accordance with security policies.
• Perform annual validation of user access privileges and role assignments in coordination with supervisors to ensure appropriate access levels and enforcement of separation of duties.
• Serve as primary incident handler for all security incidents, following established operating procedures and escalation protocols.
• Assist with patch management including application of patches and verification of successful deployment to ensure timely remediation of vulnerabilities.
• Maintain comprehensive understanding of system architecture, components, data flows, interconnections, and security categorization.
• Coordinate Interconnection Security Agreements (ISAs) for external connections and ensure proper documentation in Security Plans and Risk Assessments.
• Follow Configuration Management Plan (CMP) procedures for all system changes and document security impacts of modifications.
• Manage and monitor ESS and Powertech security tools and systems to support continuous monitoring activities
• Maintain IT Security Logbook documenting standard operating procedures and security activity records

Benefits

• health and disability insurance
• 401(k) match
• flexible spending accounts
• EAP
• education assistance
• parental leave
• paid time off
• company-paid holidays