Information System Security Engineer
3 weeks ago
The Cybersecurity ISSE will work with a team of cyber, technical, and program subject matter experts to capture and refine information security requirements and ensure their integration into information technology component products and information systems through purposeful security design or configuration
for all programs under the ARDAP Assessment and Authorization (A&A) portfolio
The ISSE will provide subject matter expertise (SME) in the continued research, testing, training, implementation, and continuous monitoring of these enterprise solutions
Work location is client site, Fort Belvoir, VA
Candidates should expect to work at the client site approximately 1 day per week
Responsibilities
• Define system security requirements in coordination with security stakeholders including system engineers, program managers, security control assessors, and authorizing officials.
• Ensure cybersecurity requirements are identified, allocated, implemented, verified, and continuously monitored throughout the system life cycle.
• Perform Assessment and Authorization (A&A) cybersecurity reviews, identify gaps, and support risk management plans for cybersecurity personnel to execute.
• Support the Risk Management Framework (RMF) process for each product in the portfolio.
• Provide SME level cybersecurity engineering support and input to product leads and cybersecurity teams to produce authority to operate (ATO) packages and successfully achieve ATOs.
• Support interim authority to test (IATT), risk assessment /acceptance, and all other ATO related activities.
• Interpret security control noncompliance to determine the impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.
• Work with product teams to identify controls, develop appropriate mitigations, and develop and track Program of Action and Milestone (POAM) documents to ensure that ATO packages are technically sound before submission to the program cyber staff for review.
• Track audit findings and recommendations to ensure that appropriate mitigation actions are taken.
• Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs).
• Provide independent cybersecurity advice and guidance to government stakeholders and contractor team members.
• Participate in recurring cybersecurity working group meetings.
• Develop or review system security designs and architectures.
• Advise system engineers on the best methods to remediate vulnerability findings through the use of security scanning tools and DoD / Industry best practices.
• Support cybersecurity engineering analysis of alternatives, tradeoffs, and risk treatment decisions.
• Develop cybersecurity documentation in support of customer Risk Management Framework (RMF) process; in accordance with NIST SP 800-37 Rev 2.
• Work with interdisciplinary teams to deliver trustworthy and secure systems
Qualifications Required:
• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
• 5 years minimum of system and/or security engineering work performed in support of U.S
Government customers
• Experience reviewing and developing of RMF Assessment and Authorization (A&A) documentation, e.g., System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POAMs)
• Experience implementing DoDI 8510.01 Risk Management Framework for DoD
• DoD 8570 IASAE Level II baseline certification (CISSP, CCSP, etc.)
• Must possess and maintain a Secret Security Clearance Desired:
• Experience implementing NIST SP 800-53 Revision 4 security requirements and NIST SP 800-53A security assessment procedures.
• Knowledge of Cloud (i.e., Azure, Amazon C2S, Commercial and GovCloud) security planning, design, and operations.
• Ability to explain complex cybersecurity issues to a diverse audience in layman's terms.
• Experience implementing or assessing cybersecurity solutions using technologies such as:
• Nessus, WebInspect, Splunk, Open SCAP
• Microsoft Windows, Server, Active Directory
• RedHat Linux; CentOS,
• Virtualization Platforms: Hyper-V, VMware
• VDI (Desktop), Citrix
• Network engineering/design of LANs, WANs, MANs, including underlying routing protocols, and implementation
(TCP/IP, BGP, OSPF)
• Knowledge of Cross Domain Solutions (CDS).
• Experience presenting verbal/written communications to Senior leadership including - Information Systems Security Engineer (ISSM), System Owners, Authorizing officials, and security leads.
• Experience with systems engineering lifecycle processes.
• Proven ability to balance priorities in a dynamic, mission-oriented environment.
• Experience with agile frameworks and Continuous Integration/Continuous Delivery (CI/CD) frameworks such as DevOps or DevSecOps.
• Experience with cloud cybersecurity implementations.
• Familiarity with Army NETCOM RMF review processes (RMF 2.0).
• Experience with Continuous Monitoring and Continuous Monitoring Risk Scoring (CMRS)
• DoD 8570 IASAE Level III certification, such CISSP-ISSAP or CISSP-ISSEP or ability to be certified at level III within 6 months of start.
-
Information System Security Engineer
4 weeks ago
Fort Belvoir, United States Ncompass, LLC (SDVOSB) Full timeNcompass, LLC, a Service-Disabled Veteran Owned Small Business (SDVOSB) employing Subject Matter Experts (SMEs) who specialize in the assessment and management of system risk using the National Institute of Standards and Technology (NIST) and Risk Management Framework (RMF) for On-Prem and Cloud-Based systems, is seeking an experienced Information System...
-
Information System Security Engineer
4 weeks ago
Fort Belvoir, United States Ncompass, LLC (SDVOSB) Full timeNcompass, LLC, a Service-Disabled Veteran Owned Small Business (SDVOSB) employing Subject Matter Experts (SMEs) who specialize in the assessment and management of system risk using the National Institute of Standards and Technology (NIST) and Risk Management Framework (RMF) for On-Prem and Cloud-Based systems, is seeking an experienced Information System...
-
Information System Security Engineer
2 weeks ago
Fort Belvoir, United States Ncompass, LLC (SDVOSB) Full timeNcompass, LLC, a Service-Disabled Veteran Owned Small Business (SDVOSB) employing Subject Matter Experts (SMEs) who specialize in the assessment and management of system risk using the National Institute of Standards and Technology (NIST) and Risk Management Framework (RMF) for On-Prem and Cloud-Based systems, is seeking an experienced Information System...
-
Senior Information Security Analyst
3 days ago
Fort Belvoir, United States Applied Information Sciences Full timeAs a Senior Information Security Analyst, you are responsible for implementing effective cybersecurity measures, monitoring networks for vulnerabilities, and responding to security breaches. What You'll Be DoingIdentifying and assessing the robustness of security systems and designs, as well as the specific operational impacts of cybersecurity lapses, to...
-
Information System Security Engineer
4 weeks ago
Fort Belvoir, United States LMI Full timeOverviewArmy Data and Analytics Platforms (ARDAP) is seeking a Cybersecurity Information Systems Security Engineer (ISSE) to join a team supporting data and analytics platforms for the US Army. The Cybersecurity ISSE will work with a team of cyber, technical, and program subject matter experts to capture and refine information security requirements and...
-
Information System Security Engineer
3 weeks ago
Fort Belvoir, United States LMI Full timeOverviewArmy Data and Analytics Platforms (ARDAP) is seeking a Cybersecurity Information Systems Security Engineer (ISSE) to join a team supporting data and analytics platforms for the US Army. The Cybersecurity ISSE will work with a team of cyber, technical, and program subject matter experts to capture and refine information security requirements and...
-
Information Systems Security Engineer
3 weeks ago
Fort Meade, United States Hoplite Solutions LLC Full timeHoplite Solutions is seeking Information Systems Security Engineers (ISSE) to join us on a contract being awarded in June 2024. The Information Systems Security Engineer will perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Cybersecurity standards and...
-
Information Systems Security Engineer
2 weeks ago
Fort Meade, United States Hoplite Solutions LLC Full timeHoplite Solutions is seeking Information Systems Security Engineers (ISSE) to join us on a contract being awarded in June 2024. The Information Systems Security Engineer will perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Cybersecurity standards and...
-
Information Systems Security Engineer
3 days ago
Fort Meade, United States Hoplite Solutions LLC Full timeHoplite Solutions is seeking Information Systems Security Engineers (ISSE) to join us on a contract being awarded in June 2024. The Information Systems Security Engineer will perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Cybersecurity standards and...
-
Cloud Information Systems Security Specialist
2 weeks ago
Fort Belvoir, United States CACI International Inc Full timeCloud Information Systems Security SpecialistJob Category: Information TechnologyTime Type: Full timeMinimum Clearance Required to Start: NoneEmployee Type: RegularPercentage of Travel Required: NoneType of Travel: None* * * What You’ll Get to Do: CAC is seeking a Cloud Information Systems Security Specialist to be part of an Oracle E-Business Suite...
-
Senior Information Security Analyst
1 week ago
Fort Belvoir, Virginia, United States Applied Information Sciences Full timeIntro: As a Senior Information Security Analyst, you are responsible for implementing effective cybersecurity measures, monitoring networks for vulnerabilities, and responding to security breaches. What You'll Be Doing: Identifying and assessing the robustness of security systems and designs, as well as the specific operational impacts of cybersecurity...
-
Information Systems Security Engineer
5 days ago
Fort Walton Beach, United States DCS Corp Full timeAs a highly motivated and experienced ISSE supporting the USRL at the 513 EWS, the ideal candidate will have a solid understanding of information security concepts, a deep proficiency in security engineering, and be responsible for designing and implementing security systems and procedures of 513th EWS information systems. Essential Job Functions: Design,...
-
Information Systems Security Engineer
3 days ago
Fort Walton Beach, United States DCS Corp Full timeAs a highly motivated and experienced ISSE supporting the USRL at the 513 EWS, the ideal candidate will have a solid understanding of information security concepts, a deep proficiency in security engineering, and be responsible for designing and implementing security systems and procedures of 513th EWS information systems. Essential Job Functions: Design,...
-
Information System Security Engineer
2 weeks ago
Fort Meade, United States Birchmere Group Full timeJob DescriptionJob DescriptionSalary: Depends on Experience***Must have a TS/SCI Clearance with Polygraph *** We do not have the ability to clear anyone at this time.Information System Security Engineer (ISSE) - Senior-levelThe Information Systems Security Engineer (ISSE) shall perform, or review, technical security assessments of computing environments to...
-
Information Systems Security Engineer
2 weeks ago
Fort Meade, United States Birchmere Group Full timeJob DescriptionJob DescriptionSalary: Depends on Experience***You MUST already have a TS/SCI Clearance with a Polygraph to qualify***Information Systems Security Engineer Level 3The Information Systems Security Engineer (ISSE) shall perform, or review, technical security assessments of computing environments to identify points of vulnerability,...
-
Information Systems Security Engineer
2 weeks ago
Fort Meade, United States Birchmere Group Full timeJob DescriptionJob DescriptionSalary: Depends on Experience***You MUST already have a TS/SCI Clearance with a Polygraph to qualify***Information Systems Security Engineer Level 2The Information Systems Security Engineer (ISSE) shall perform, or review, technical security assessments of computing environments to identify points of vulnerability,...
-
Systems Engineer
3 weeks ago
Fort Belvoir, United States Tulk LLC Full timeJob DescriptionJob DescriptionSystems EngineerTULK is a leading boutique consulting firm providing technology and management consulting services to the US Federal Government. Our expert team assists Defense and National Security clients in acquiring, designing, managing, and developing advanced technology systems and business practices to advance their...
-
Systems Engineer
2 weeks ago
Fort Belvoir, United States Tulk LLC Full timeJob DescriptionJob DescriptionSystems EngineerTULK is a leading boutique consulting firm providing technology and management consulting services to the US Federal Government. Our expert team assists Defense and National Security clients in acquiring, designing, managing, and developing advanced technology systems and business practices to advance their...
-
Principal Systems Solutions Engineer
2 weeks ago
Fort Belvoir, United States By Light Professional IT Services Full timeOverview By Light Professional IT Services (By Light) are leading providers of innovative Information Technology (IT) services and communications support to the Department of Defense and Federal Agencies. By Light is looking for personnel to support a U.S. Army information technology infrastructure program. The project includes conducting survey and design,...
-
Senior System Engineer
1 week ago
Fort Belvoir, United States Jacobs Full timeYour Impact:Challenging Today. Reinventing Tomorrow.We're invested in you and your success. Everything we do is more than just a project. It's our challenge as human beings, too. That's why we bring a thoughtful and collaborative approach to every one of our partnerships.At Jacobs, we challenge the status quo and redefine how to solve the world's greatest...