Systems Security Engineer
About The Position
The Systems Security Engineer (SSE) delivers comprehensive cybersecurity engineering support throughout the system development lifecycle, ensuring systems are designed, implemented, and maintained to meet federal security standards and risk management requirements. Collaborating with ISSOs, system owners, and engineering teams, the SSE integrates technical, administrative, and operational controls into system architectures, applies Risk Management Framework (RMF) principles, develops security artifacts, and supports system authorization, continuous monitoring, and Zero Trust Architecture initiatives. The ideal candidate possesses strong technical expertise in NIST frameworks, experience with risk analysis, system authorization, and ongoing security operations.
Requirements
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
- 3–6+ years of experience in systems security engineering, RMF support, or cybersecurity operations within regulated environments.
- Strong knowledge of NIST SP 800-53, RMF (800-37), 800-61, and 800-171 frameworks and their application in system design and authorization.
- Experience supporting ATO processes, security assessments, and continuous monitoring activities.
- Familiarity with Zero Trust Architecture (ZTA) concepts and implementation approaches.
- Experience conducting threat modeling, risk analysis, and vulnerability assessment coordination.
- Ability to develop and maintain security documentation and compliance artifacts.
- Strong analytical, communication, and collaboration skills across technical and non-technical teams.
- Must be a U.S. Citizen and eligible to support federal contracting environments.
Nice To Haves
- CISSP (Certified Information Systems Security Professional)
- Security+, CEH, or similar cybersecurity certification
- RMF-related or federal compliance certifications are also a plus
Responsibilities
- Support secure system design and architecture aligned with NIST SP 800-53, 800-37 (RMF), 800-61 (Incident Response), and 800-171 requirements.
- Integrate and validate technical, administrative, and operational security controls within system implementations.
- Contribute to and support Zero Trust Architecture (ZTA) initiatives across system environments.
- Perform threat modeling and technical risk analysis to identify system vulnerabilities and recommend mitigation strategies.
- Support all phases of the Risk Management Framework (RMF), including Categorize, Select, Implement, Assess, Authorize, and Monitor.
- Coordinate with Information System Security Officers (ISSOs), Information System Security Engineers (ISSEs), and system owners to ensure alignment on security requirements and implementation.
- Support coordination of penetration testing and vulnerability scanning activities, including remediation tracking and validation.
- Assist in incident response activities, including root-cause analysis and documentation of findings.
- Develop, maintain, and update system security documentation and artifacts, including security plans, control narratives, and risk assessments.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
11-50 employees
