Information System Security Engineer (ISSE)
Accenture Federal Services · Cocoa Beach, FL · 3 wk ago
Information Technology$100k–$203k/yrFull-time
About the role
The Information System Security Engineer (ISSE) will be responsible for reviewing and assessing Risk Management Framework (RMF) authorization body of evidence for classified information systems. This includes System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Continuous Monitoring Plan, Incident Response Plan, Access Control Plan, Security Assessment Plan, etc.
Responsibilities
- Review new and existing systems for technical compliance with IA directives and protection of data at all classification levels including SCI
- Advise on in-depth security design review and threat/risk assessments
- Provide inputs to technical artifacts, including Plans of Action and Milestones (POA&Ms), Security Control Traceability Matrices (SCTM), and Risk Assessment Reports (RARs)
- Conduct site visits (as required) and assessments to inspect IA plans and security control implementations and support Incident Response Team (IRT) activities
Requirements
- DoD 8570 IAT Level II certification or higher (Sec+, CISSP, CASP, etc.)
- 5 years of implementing NIST 800-53, Rev 4 and/or the Risk Management Framework (RMF)
- 5 years of experience with Windows and/or Linux environments
- 5 years of experience with virtualization or cloud environments
- 2 years of using information security and assurance practices and principles
Bonus points
- Experience with MS Active Directory, Splunk, ACAS/Nessus, McAfee, Windows, Linux, AWS Security, etc.
- Strong verbal and written communication skills
- Ability to engage with users in a professional manner and present technical concepts plainly to semi-technical customers
- Ability to interface with seasoned Government personnel
- Ability to work in a matrixed team environment and support multiple different efforts as needed
- Desire to learn new technologies and tools and willing to share your experience with the team
- ACAS/Nessus for scanning experience
- Experience utilizing SIEM/Splunk to configure and operate SIEM, create dashboards, reports
- Experience with Incident handling procedures
- Other Security related certification (Cloud, SIEM, forensics, Linux, Windows, etc.)
- Experience working in a DevSecOps project environment
- Formerly or currently a system administrator, developer, or engineer
- JSIG or ICD 503 compliance
Pay
The pay range for the states of California, Colorado, Hawaii, Illinois, Maine, Maryland, Massachusetts, Minnesota, New Jersey, New York, Vermont, Virginia, Washington, and the District of Columbia, and the city of Cleveland is: $100,200 - $203,400 USD