Information Systems Security Engineer with Security Clearance
Base-2 Solutions · Annapolis Junction, MD · 1 mo ago
Information TechnologyFull-time
Responsibilities
- Develops, implements, and maintains security solutions for complex systems to ensure confidentiality, integrity, and availability.
- Conducts system security analysis, risk assessments, and vulnerability assessments to identify and mitigate risks.
- Supports the development of security architecture and system security engineering artifacts based on NIST, DoD, and IC policies and guidelines.
- Collaborates with system architects, software engineers, and network engineers to incorporate security requirements into system design.
- Develops and maintains System Security Plans (SSPs), Security Assessment Reports (SARs), and related Risk Management Framework (RMF) documentation.
- Performs continuous monitoring and ensures compliance with applicable security standards (NIST SP 800-53, ICD 503, CNSS, etc.).
- Provides recommendations for improving system security posture and addresses security incidents as they arise.
- Engages in security testing, evaluation, and certification & accreditation (C&A) activities.
- Interfaces with government customers and stakeholders to effectively communicate technical information and security strategies.
Requirements
- Experience with some or all of the following:
- Security frameworks and standards such as NIST SP 800-53, RMF, ICD 503, CNSS, DoD STIGs
- Security tools such as ACAS, Nessus, Tenable, Splunk, Wireshark, HBSS, McAfee ePO
- Security technologies including Firewalls, IDS/IPS, SIEMs, VPNs, PKI, Multi-Factor Authentication
- System security documentation: SSPs, POA&Ms, SARs, Security Control Traceability Matrix (SCTM)
- Experience with Linux, Unix, Windows, and Virtualization technologies (VMware, Hyper-V)
- Cloud platforms such as AWS, Azure, Google Cloud with a focus on cloud security
- Cryptography protocols and technologies such as TLS/SSL, IPsec, VPN, PKI
- Security testing tools: Nmap, Metasploit, Burp Suite, Kali Linux
- Scripting and automation experience: Python, PowerShell, Bash
- Knowledge of system development lifecycle (SDLC), software assurance, and secure coding practices
- Collaboration and issue-tracking tools like JIRA, Confluence, ServiceNow
- Certifications such as CISSP, CAP, CEH, Security+, AWS Security Specialty, or equivalent
Qualifications
Commensurate with experience.
Skills
Commensurate with experience.
Benefits
- Compensation: Competitive fixed salary or hourly pay (based on experience, skills, location, and internal equity).
- Employee referral bonuses up to $10,000 per hired referral.
- Additional bonus opportunities for exceptional performance and contributions to business development and company growth (role-dependent).
- Health: 100% company-paid medical premiums for employees and eligible dependents. Choose from multiple plan options with CareFirst, Kaiser, and UnitedHealthcare, including PPO, POS, HMO, and HSA-compatible plans. 100% company-paid dental premiums for employees and eligible dependents. 100% company-paid vision premiums for employees and eligible dependents.
- Income Protection: 100% company-paid premiums for short-term disability. 100% company-paid premiums for long-term disability. 100% company-paid premiums for accidental death & dismemberment (AD&D). 100% company-paid premiums for life insurance up to $200,000.
- Retirement: 401(k) with immediate vesting: 4% company match plus a 4% non-elective company contribution (8% total). 401(k) pre-tax and Roth options.
- Leave: Up to 20 days of flexible paid time off (PTO). 11 paid floating holidays.
- Work-Life Balance: Flexible work schedules, including flex time and compressed work periods (contract and project-dependent).