Information Systems Security Engineer (ISSE)
Mantis Security Corporation · Reston, VA · 2 mo ago
On-siteInformation TechnologyFull-time
About the role
Mantis Security is a leading specialty firm dedicated to Cyber Operations, Cyber Defense, Information Assurance, Software Development, DevSecOps, Security Engineering, and Cloud Engineering. We enable and protect critical IT assets and invest in the professional development of our employees.
Responsibilities
- Develops and implements security designs ensuring adequate cyber security requirements and SCTM are addressed.
- Identifies vulnerabilities, non-compliance with IA standards and regulations, and recommends mitigation strategies.
- Implements and validates STIG requirements and performs SRG assessments for all projects.
- Develops and customizes Splunk applications and dashboards.
- Develops and executes Security Test Procedures (STP) and supports A&A testing and validation of security designs.
- Conducts risk analysis, reviews ACAS, CVEs, plugins, CWEs, collaborates with System Administrators to mitigate vulnerabilities, and authorizes PO&AMs as needed.
- Executes continuous monitoring efforts, responds to data calls, scan requests, and reports security metrics.
- Validates control implementations, enforces data access and network flow restrictions, and supports agile planning events.
- Supports government activities and reporting to IC and DoD authorities.
- Supports security authorization activities in compliance with RMF, CNSSI No 1243, and other prescribed business processes.
- Participates in security engineering activities including system security design, engineering life cycle, cross-domain solutions, cryptography, identification, authentication, authorization, system integration, risk management, intrusion detection, contingency planning, incident handling, configuration control, change management, auditing, certification and accreditation, and security testing.
Requirements
- US Citizen
- 8 years of relevant experience and a Bachelor’s degree in Computer Science, Information Assurance, Information Security System Engineering, or related field from an accredited institution, or a Master’s degree in Computer Science, Information Assurance, Information Security System Engineering, or related field, plus 2 years of additional experience.
- DoD 8570 compliance with IASAE Level 3 is required.
- 3 years of experience in scripting languages, Linux/RedHat, and/or networking appliances.
Nice to Haves
- Skilled in implementing mitigation strategies and resolving issues, and re-testing/re-evaluating systems.
- Demonstrated experience with DISA STIG implementation and SCAP tool usage.
- Possess a working knowledge of server, system, and application security threats and vulnerabilities.
- Experience extending applications in security, monitoring, task automation, CI/CD, performance optimization.
- Proficient in scripting/programming (Shell scripting, Python, JavaScript, PowerShell) in Linux or Windows environments.
- Experience analyzing vulnerabilities, establishing cause and impact, and identifying corrective actions.
Qualifications
- Active TS/SCI security clearance with polygraph eligibility.
- ISSEP and CISSP certifications are preferred.
Benefits
We offer a comprehensive benefits package designed to support our employees' well-being and career growth. Visit our website at https://www.mantissecurity.com for more details.