Information Systems Security Engineer (ISSE)
Mantis Security Corporation · Sarasota, FL · 2 mo ago
On-siteInformation TechnologyFull-time
About the role
Mantis Security is seeking an experienced Information Systems Security Engineer (ISSE) to join our dynamic team. The ideal candidate will play a crucial role in defining and implementing security requirements, ensuring compliance with IA standards and regulations.
Responsibilities
- Develop and implement security designs ensuring adequate cyber security requirements and STIG requirements.
- Identify vulnerabilities, non-compliance, and recommend mitigation strategies.
- Implement and validate STIG requirements and/or perform SRG assessments for all development and implementation projects.
- Develop and customize Splunk applications and dashboards.
- Create and conduct Security Test Procedures (STPs), supporting A&A testing and validation of security designs.
- Conduct risk analysis, review ACAS, CVEs, plugins, CWEs, and collaborate with System Administrators to mitigate vulnerabilities.
- Support continuous monitoring efforts, responding to data calls, scan requests, and security metrics reporting.
- Validate control implementations, enforcing data access and network flow restrictions aligned with the continuous monitoring strategy.
- Participate in Agile Planning Events to provide technical input.
- Support government activities and reporting to IC and DoD authorities, including USCYBERCOM and IC-SCC.
- Assist in security authorization activities, adhering to RMF, CNSSI No 1243, and other prescribed business processes.
- Apply system security engineering expertise in areas such as system security design, engineering life cycle, information domain, cross-domain solutions, cryptography, identification, authentication, authorization, system integration, risk management, intrusion detection, contingency planning, incident handling, configuration control, change management, auditing, certification and accreditation process, IA principles, and security testing.
Requirements
- US Citizen with 8+ years of relevant experience and a Bachelor’s degree in Computer Science, Information Assurance, Information Security System Engineering, or related field.
- A Master’s degree in Computer Science, Information Assurance, Information Security System Engineering, or related field may substitute for 2 years of additional experience.
- 4 years of additional ISSE experience may be substituted for a Bachelor’s degree.
- DoD 8570 compliance with IASAE Level 3 is required.
- Active TS/SCI clearance with polygraph eligibility.
- Required certifications: ISSEP and CISSP.
- Nice to have: Scripting skills, Linux/RedHat, Networking Appliances, experience with STIG and SCAP tools, server/system/application security threat/vulnerability analysis, and experience with continuous integration/deployment/performance optimization.