Jobs · Information Technology · Maryland

Information Systems Security Engineer with Security Clearance

Base-2 Solutions · Annapolis Junction, MD · 1 mo ago
Information TechnologyFull-time

Responsibilities

  • Develops, implements, and maintains security solutions for complex systems to ensure confidentiality, integrity, and availability.
  • Conducts system security analysis, risk assessments, and vulnerability assessments to identify and mitigate risks.
  • Supports the development of security architecture and system security engineering artifacts based on NIST, DoD, and IC policies and guidelines.
  • Collaborates with system architects, software engineers, and network engineers to incorporate security requirements into system design.
  • Develops and maintains System Security Plans (SSPs), Security Assessment Reports (SARs), and related Risk Management Framework (RMF) documentation.
  • Performs continuous monitoring and ensures compliance with applicable security standards (NIST SP 800-53, ICD 503, CNSS, etc.).
  • Provides recommendations for improving system security posture and addresses security incidents as they arise.
  • Engages in security testing, evaluation, and certification & accreditation (C&A) activities.
  • Interfaces with government customers and stakeholders to effectively communicate technical information and security strategies.

Requirements

  • Experience with some or all of the following:
  • Security frameworks and standards such as NIST SP 800-53, RMF, ICD 503, CNSS, DoD STIGs
  • Security tools such as ACAS, Nessus, Tenable, Splunk, Wireshark, HBSS, McAfee ePO
  • Security technologies including Firewalls, IDS/IPS, SIEMs, VPNs, PKI, Multi-Factor Authentication
  • System security documentation: SSPs, POA&Ms, SARs, Security Control Traceability Matrix (SCTM)
  • Experience with Linux, Unix, Windows, and Virtualization technologies (VMware, Hyper-V)
  • Cloud platforms such as AWS, Azure, Google Cloud with a focus on cloud security
  • Cryptography protocols and technologies such as TLS/SSL, IPsec, VPN, PKI
  • Security testing tools: Nmap, Metasploit, Burp Suite, Kali Linux
  • Scripting and automation experience: Python, PowerShell, Bash
  • Knowledge of system development lifecycle (SDLC), software assurance, and secure coding practices
  • Collaboration and issue-tracking tools like JIRA, Confluence, ServiceNow
  • Certifications such as CISSP, CAP, CEH, Security+, AWS Security Specialty, or equivalent

Qualifications

Commensurate with experience.

Skills

Commensurate with experience.

Benefits

  • Compensation: Competitive fixed salary or hourly pay (based on experience, skills, location, and internal equity).
  • Employee referral bonuses up to $10,000 per hired referral.
  • Additional bonus opportunities for exceptional performance and contributions to business development and company growth (role-dependent).
  • Health: 100% company-paid medical premiums for employees and eligible dependents. Choose from multiple plan options with CareFirst, Kaiser, and UnitedHealthcare, including PPO, POS, HMO, and HSA-compatible plans. 100% company-paid dental premiums for employees and eligible dependents. 100% company-paid vision premiums for employees and eligible dependents.
  • Income Protection: 100% company-paid premiums for short-term disability. 100% company-paid premiums for long-term disability. 100% company-paid premiums for accidental death & dismemberment (AD&D). 100% company-paid premiums for life insurance up to $200,000.
  • Retirement: 401(k) with immediate vesting: 4% company match plus a 4% non-elective company contribution (8% total). 401(k) pre-tax and Roth options.
  • Leave: Up to 20 days of flexible paid time off (PTO). 11 paid floating holidays.
  • Work-Life Balance: Flexible work schedules, including flex time and compressed work periods (contract and project-dependent).

Similar jobs