ME00619-ISSE 2
On-siteOTHRFull-time
Job Summary
- Seeking an experienced Information Systems Security Engineer (ISSE) to support mission-critical Department of Defense (DoD) and Intelligence Community (IC) programs
Primary Responsibilities
- Perform Information Systems Security Engineering (ISSE) activities supporting the design, implementation, accreditation, and sustainment of secure information systems
- Conduct vulnerability management utilizing enterprise security tools including Tenable Security Center, Nessus, and related vulnerability assessment platforms
- Perform and review technical security assessments of enterprise and cloud-based computing environments to identify vulnerabilities, security weaknesses, and non-compliance with applicable cybersecurity policies and standards
- Analyze security findings and recommend mitigation strategies to reduce operational risk and improve overall security posture
- Perform security planning, security assessments, risk analysis, risk management, and cybersecurity engineering activities throughout the system lifecycle
- Design secure system and network architectures supporting multiple security enclaves with varying classification levels and data protection requirements
- Develop system-level security solutions that satisfy mission, operational, and cybersecurity requirements.
- Support implementation of trusted relationships among interconnected systems, external networks, and enterprise architectures
- Evaluate security controls and recommend technical solutions that align with Risk Management Framework (RMF), NIST, Committee on National Security Systems (CNSS), and DoD cybersecurity requirements
- Support system authorization activities by developing and maintaining cybersecurity documentation, security artifacts, and accreditation packages
- Collaborate with systems engineers, software developers, network engineers, and program management to integrate security throughout the system development lifecycle
- Assist with security testing, validation, continuous monitoring, vulnerability remediation, and compliance reporting
- Maintain technical documentation, security assessments, engineering analyses, and risk management documentation
- Stay current on emerging cybersecurity threats, vulnerabilities, technologies, and federal security guidance to improve organizational security posture
Required Qualifications
- Must have active Top Secret/SCI clearance with NSA Full Scope Polygraph
- Minimum of fourteen (14) years of experience as an Information Systems Security Engineer (ISSE) supporting programs of similar scope, complexity, and technical environment
- Bachelor's degree in Computer Science, Information Assurance, Information Systems Security Engineering, Cybersecurity, or a related technical discipline
- Four (4) additional years of directly related ISSE experience may be substituted in lieu of the degree requirement
- DoD 8570.01-M IASAE Level II certification compliance is required
- Certified Information Systems Security Professional (CISSP) certification is required
- Experience conducting vulnerability management using Tenable Security Center, Nessus, and enterprise vulnerability assessment tools
- Experience performing technical security assessments of cloud, enterprise, and distributed computing environments
- Strong understanding of the Risk Management Framework (RMF), NIST Special Publications, CNSS policies, and DoD cybersecurity requirements
- Experience performing security planning, risk assessments, security control implementation, and risk management
- Experience designing secure enterprise architectures supporting multiple security domains and classification levels
- Knowledge of network security, system hardening, access control, identity management, encryption, and secure communications
- Experience developing security recommendations and mitigation strategies for complex information systems
- Strong analytical, troubleshooting, documentation, and communication skills
- Ability to collaborate effectively with multidisciplinary engineering and cybersecurity teams
Desired Qualifications
- Experience supporting Authorization to Operate (ATO) packages and security authorization activities
- Experience with Security Technical Implementation Guides (STIGs), Security Requirements Guides (SRGs), and vulnerability remediation
- Familiarity with cloud security architectures supporting AWS, Azure, or hybrid cloud environments
- Experience supporting continuous monitoring programs and enterprise cybersecurity operations
- Knowledge of Zero Trust Architecture (ZTA), Identity and Access Management (IAM), and secure cloud technologies
- Experience working within Agile, DevSecOps, or secure software development environments
- Familiarity with Security Information and Event Management (SIEM) platforms such as Splunk or Microsoft Sentinel
- Experience supporting Department of Defense or Intelligence Community cybersecurity programs
Pay and Benefits
Exempt hourly position. 11 paid holidays, minimum of 3 weeks PTO, company sponsored group medical plan, company paid dental, vision, life insurance, and STD/LTD plans. Salary is dependent upon the candidate’s experience and qualifications.
The pay range for this role is:
130,000 - 180,000 USD per year (NBP)
Engineering 1
Annapolis Junction, MD