Information Systems Security Engineer
3 weeks ago
Job Description
Job Description Salary:
Security Clearance Required
-
TS/SCI
Information Systems Security Engineer (ISSE):
DPG Solutions
has an immediate career-growth opportunity for a collaborative and highly skilled Information Systems Security Engineer.
The ISSE will join our Tech Ops IV program engineering team in Aurora, CO, supporting a high priority 24x7 operational system. The ISSE performs core activities to include providing certified services and support for Information Assurance/Program Protection efforts for compliance with governing DoD Cybersecurity directives. This position will support activities of the program to target, assess, and report risks and vulnerabilities of Intelligence Community organization systems in order to provide senior decision makers with actionable data to make strategic decisions. The ISSE shall perform, or review, technical security assessments of computing environments to identify points of vulnerability and non-compliance with established Information Assurance (IA) standards, regulations and recommend mitigation strategies. This position is responsible for the maintenance and administration of multiple domains, including a 24/7 operational system and a test facility. Must be willing to occasionally provide after hour support to the 24/7 operational system.
Duties and Responsibilities:
Implement Information Assurance (IA) processes, provide guidance, and develop documentation throughout the system development life-cycle via the RMF resource in ServiceNOW.
Develop, implement, and document formal security policies and System Security Plans (SSP) throughout the program and monitor compliance to these policies during all phases of the Risk Management Framework (RMF) process.
Utilize Enterprise Security Services to provide analysis of vulnerabilities and compliance risks in ACAS, Enterprise IT audit logs in ArcSight and Splunk, McAfee Host-Based Security Services (HBSS), User Activity Monitoring (UAM), and Cyber Terrain Mapping (CTM) on 100+ nodes.
Monitor Heat Map Score matrix and evaluate cyber risk data, keeping the score at acceptable risk levels for the security categorization of the asset(s) and their Risk Evaluation Lanes (REL).
Care for and deliver system authorization and accreditation packages, for 4 assets that span 3 different classification levels.
Review and make recommendations on program-level documentation (e.g., requirements specification, system architecture, design documents, test plans, security plans, etc.).
Assess/calculate risk based on threats, vulnerabilities, and shortfalls uncovered in routine analyzation of Continuous Monitoring (ConMon) controls and provide those results as Body of Evidence (BoE) to be evaluated in 7, 30, 90 and 365 day increments as the control metrics require.
Direct activities desired to remediate system-level information security weaknesses tracked via the FISMA (POA M) process. Document the elements of the plans, milestones for correcting the weaknesses, and scheduled completion dates for the milestones, periodically reporting remediation progress as necessary.
Brief guidance, as needed, on the status of action items and/or results of activities affecting the security posture of the program.
Able to collaborate and communicate effectively with other system engineers, system administrators, software developers, and information assurance professionals.
Qualifications:
Minimum 5 years' experience, in a security position for the government or government contractor in the Intelligence Community (IC).
A Bachelor's Degree in Information Technology, Information Systems Security, Cybersecurity, or related field.
DoD 8570.01 IAT level 2 or greater cybersecurity certification per DoD 8570.01
Experience in security systems engineering involving Linux and CENTOS operation systems and application solutions in both stand-alone and LAN/WAN configurations.
Must be a US Citizen with current/active TS/SCI with polygraph.
Required Skills:
Minimum of 10 years' related experience in Cybersecurity, Systems or Software Engineering, for the government or government contractor, if other than IC position.
Experience developing Security Authorization Requirements, performing vulnerability assessments, and implementing threat mitigation updates on embedded systems and products.
Experience configuring and hardening COTS components with STIGs.
Continuous Monitoring and Network monitoring experience.
Experience with product development including architecture, requirements, design, integration and testing.
Experience with compliance implementation of security requirements (i.e. Risk Management Framework and other A A processes).
Experience participating in technical reviews with both external and internal customers.
Coordinate with ISSO/ISSM to update POA M and reflect open vulnerabilities associated with servers and workstations, develop remediation plans to include milestone completion dates and status updates, and include mitigation process for closed vulnerabilities.
Participate in Configuration Control Board (CCB).
Desired Skills:
Experience using DISA Security Technical Implementation Guides (STIGs).
Experience onboarding assets to centrally managed Enterprise solutions.
Experience conducting risk analysis on products and system components through review of CVEs, plugins, IAVAs.
Experience in conducting software due diligence with COTS/GOTS and proprietary solutions.
Positive, self-motivated individual who can complete tasks independently.
Experience with multi-level security solutions.
Experience working in Systems Engineering on complex embedded systems.
CISSP (ISC)²
Required Education (including Major):
Bachelor’s Degree in Engineering, or related Science, Technology, Engineering, Mathematics (STEM) degree program.
10 years’ experience in lieu of formal degree.
Location: Aurora, CO
Benefits at a glance:
Competitive Salary
Company Funded/Immediately vested 25% 401k Profit Sharing Plan
All Benefits and Premiums paid by company and with company HSA contribution
Quarterly Equity Share Bonuses
250 hours of Leave Annually
2 x Company Sponsored Annual Events for the employees and their families
Education Benefits
#J-18808-Ljbffr
-
Information System Security Officer
3 weeks ago
Denver, United States Cyber Security Innovations Full timeJob DescriptionJob DescriptionWe are looking for an Information System Security Officer (ISSO) to join our team on an upcoming cyber security program supporting our federal client. The ISSO will perform risk management services for several security boundaries to include FedRAMP cloud hosted applications.Responsibilities Include:Be knowledgeable of Federal,...
-
Information Technology Security Specialist
4 weeks ago
Denver, United States Apex Systems Full timeDescription: Bank of American IT Security Specialist Analyzes, improves, implements, and executes security controls proactively to prevent external threat actors from infiltrating company information or systems. Researches more advanced and complex attempts/efforts to compromise security protocols. Typically has 3-5+ years of relevant experience and will act...
-
Information Technology Security Specialist
1 month ago
Denver, United States Apex Systems Full timeDescription: Bank of American IT Security Specialist Analyzes, improves, implements, and executes security controls proactively to prevent external threat actors from infiltrating company information or systems. Researches more advanced and complex attempts/efforts to compromise security protocols. Typically has 3-5+ years of relevant experience and will act...
-
Information Technology Security Specialist
1 month ago
Denver, United States Apex Systems Full timeDescription: Bank of American IT Security Specialist Analyzes, improves, implements, and executes security controls proactively to prevent external threat actors from infiltrating company information or systems. Researches more advanced and complex attempts/efforts to compromise security protocols. Typically has 3-5+ years of relevant experience and will act...
-
Information Technology Security Specialist
5 days ago
Denver, Colorado, United States Apex Systems Full time:Bank of American IT Security Specialist Analyzes, improves, implements, and executes security controls proactively to prevent external threat actors from infiltrating company information or systems. Researches more advanced and complex attempts/efforts to compromise security protocols. Typically has 3-5+ years of relevant experience and will act as an...
-
Senior Information Security Engineer
7 days ago
Denver, United States NICE Full timeAt NICE, we don't limit our challenges. We challenge our limits. Constantly. We're relentless. We're ambitious. And we make an impact. Our NICErs bring their A game and spend each day turning it into an A+. And if you're like us, we can offer you the kind of challenge that will light a fire within you. Job Title: Senior Information Security Engineer...
-
Senior Information Security Engineer
1 week ago
Denver, United States NICE Full timeAt NICE, we don't limit our challenges. We challenge our limits. Constantly. We're relentless. We're ambitious. And we make an impact. Our NICErs bring their A game and spend each day turning it into an A+. And if you're like us, we can offer you the kind of challenge that will light a fire within you. So, what's the role all about? We are seeking a highly...
-
Information Security Software Engineer
2 weeks ago
Denver, United States Federal Reserve Bank of Kansas City Full timeCompany Federal Reserve Bank of Kansas CityAs a part of the nation's central bank, the Federal Reserve Bank of Kansas City supports a stable financial system. We work across diverse communities throughout our region and the nation to promote trust in our economy, the payments system, and financial institutions for all people. Together, we serve everyone from...
-
System Engineer
4 weeks ago
Denver, United States Apex Systems Full timeSenior Systems Engineer Perform system engineering analyses including trade studies, use case development, system and operational requirements, interface architecture and ConOps, and requirement/system validation. • Support definition of operations concepts and procedure planning/ development, interfacing with personnel from other organizations. •...
-
System Engineer
1 week ago
Denver, United States Apex Systems Full timeSenior Systems Engineer Perform system engineering analyses including trade studies, use case development, system and operational requirements, interface architecture and ConOps, and requirement/system validation. • Support definition of operations concepts and procedure planning/ development, interfacing with personnel from other organizations. •...
-
Information Security Engineer III
6 days ago
Denver, United States Bank of America Full timeInformation Security Engineer III page is loaded Information Security Engineer III Apply locations Denver Chicago time type Full time posted on Posted 2 Days Ago job requisition id 24007680 Job Description: At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is...
-
System Engineer
3 weeks ago
Denver, United States Apex Systems Full timeSenior Systems EngineerPerform system engineering analyses including trade studies, use case development, system and operational requirements, interface architecture and ConOps, and requirement/system validation.• Support definition of operations concepts and procedure planning/ development, interfacing with personnel from other organizations.• Provide...
-
System Engineer
4 weeks ago
Denver, United States Apex Systems Full timeSenior Systems Engineer Perform system engineering analyses including trade studies, use case development, system and operational requirements, interface architecture and ConOps, and requirement/system validation. Support definition of operations concepts and procedure planning/ development, interfacing with personnel from other organizations. Provide...
-
System Engineer
4 weeks ago
Denver, United States Apex Systems Full timeSenior Systems EngineerPerform system engineering analyses including trade studies, use case development, system and operational requirements, interface architecture and ConOps, and requirement/system validation.• Support definition of operations concepts and procedure planning/ development, interfacing with personnel from other organizations.• Provide...
-
System Engineer
3 weeks ago
Denver, United States Apex Systems Full timeSenior Systems Engineer Perform system engineering analyses including trade studies, use case development, system and operational requirements, interface architecture and ConOps, and requirement/system validation. Support definition of operations concepts and procedure planning/ development, interfacing with personnel from other organizations. Provide...
-
System Engineer
4 weeks ago
Denver, United States Apex Systems Full timeSenior Systems EngineerPerform system engineering analyses including trade studies, use case development, system and operational requirements, interface architecture and ConOps, and requirement/system validation.• Support definition of operations concepts and procedure planning/ development, interfacing with personnel from other organizations.• Provide...
-
System Engineer
3 weeks ago
Denver, United States Apex Systems Full timeSenior Systems EngineerPerform system engineering analyses including trade studies, use case development, system and operational requirements, interface architecture and ConOps, and requirement/system validation.• Support definition of operations concepts and procedure planning/ development, interfacing with personnel from other organizations.• Provide...
-
Information Security Software Engineer
2 weeks ago
Denver, United States Federal Reserve Bank of Kansas City Full timeCompany Federal Reserve Bank of Kansas City As a part of the nation's central bank, the Federal Reserve Bank of Kansas City supports a stable financial system. We work across diverse communities throughout our region and the nation to promote trust in our economy, the payments system, and financial institutions for all people. Together, we serve everyone...
-
Denver, United States Security Bank & Trust Full timeInformation Security Vulnerability Analysis Manager Job Description: At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. One of the keys to driving...
-
Security Control Assessor
5 days ago
Denver, Colorado, United States CALIBRE Systems Full timeJob Description CALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Security Control Assessor (Mid-level) who will conduct independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information...
