Information System Security Engineer (ISSE) III
Diligent Consulting Inc · Philadelphia, PA · 3 wk ago
On-siteInformation TechnologyFull-time
Key Responsibilities
- Lead complex security engineering tasks throughout the system lifecycle: design, development, integration, and sustainment.
- Execute full-spectrum RMF activities (Steps 0–6), including control tailoring, POA&M management, and continuous monitoring.
- Author and maintain RMF documentation: System Security Plans (SSP), Security Assessment Reports (SAR), ISCM strategies, CAPs, and risk assessments.
- Apply guidance from NIST SP 800-53 Rev 5, DoDI 8510.01, and NAVSEA/Navy cybersecurity policies.
- Conduct vulnerability assessments and remediation planning using ACAS, HBSS, VRAM, SCC, and related DoD tools.
- Collaborate with ISSMs, AOs, developers, and system owners to define system boundaries, safeguards, and security architectures.
- Serve as cybersecurity SME during design reviews, connection requests, and mission-critical deployments.
- Analyze risk posture and support risk acceptance decisions with security-first, mission-aware insight.
Minimum Qualifications
- Bachelor’s degree in Cybersecurity, Computer Science, Systems Engineering, or related field
- 8+ years of experience in information assurance, cybersecurity engineering, or RMF package development
- IAT Level III Certification required (CISSP, CASP+, or equivalent per DoD 8140.03M)
- Deep experience with:
- DoD RMF lifecycle (Steps 0–6)
- NIST SP 800-53 Rev 5, STIGs, and POA&M management
- Navy eMASS, VRAM, SCC, and cybersecurity reporting workflows
Preferred Qualifications
- Master’s degree in Cybersecurity or Engineering
- Prior experience supporting Navy or NAVSEA cybersecurity programs
- Strong technical writing skills and experience briefing senior leadership
- Familiarity with DevSecOps and Zero Trust principles
Clearance
- Active Secret Clearance required
- Top Secret Clearance preferred