Information System Security Engineer

RESPONSIBILITIES

Position Responsibilities: Services to support Information System Engineering performed by the Information System Security Engineer (ISSE) includes the following activities:

• Lead, mentor, and supervise a team of security professionals responsible for the end-to-end implementation of the RMF lifecycle for IT systems.
• Oversee and coordinate activities within the Prepare step, ensuring roles, responsibilities, and risk management strategies are clearly defined and maintained.
• Guide system categorization efforts to ensure all information systems are appropriately classified based on mission/business impact and regulatory requirements.
• Direct the selection, tailoring, and documentation of security controls aligned with system categorizations, risk appetite, and compliance requirements.
• Oversee the implementation of technical, operational, and management controls throughout system and application lifecycles, with a particular focus on quality and completeness of all deliverables.
• Ensure comprehensive security control assessments are planned, executed, and documented to validate the effectiveness of implemented safeguards.
• Prepare risk management documentation for system authorization and executive decision-making.
• Direct ongoing monitoring and continuous assessment activities, collecting metrics to adjust security strategies and ensure sustained compliance.
• Serve as a principal technical advisor on cybersecurity, bringing subject-matter expertise to risk analysis, incident response, system remediation, and audit support efforts.
• Foster a culture of security awareness, providing technical guidance and training to both team members and stakeholders.
• Track, report, and communicate status, risks, and improvement opportunities related to security engineering activities to leadership and stakeholders.
• Maintain up-to-date knowledge of RMF, NIST guidance, and industry best practices in support of continuous process improvement.

REQUIRED QUALIFICATIONS

• Mandatory: Must hold an active TOP SECRET clearance with the ability to obtain an SCI
• Familiarity with the use and operation of security tools including Tenable Nessus and/or Security Center, IBM Guardium, HP WeblInspect, Network Mapper (NMAP), and/or similar applications.
• Preferred: Experience with Joint Cybersecurity Authorization Management (JCAM) and/or Xacta
• Preferred: Hold at least one of the following certifications: Certified Information Systems Security Professional (CISSP), Global Information Security Professional (GISP), or the CompTIA Advanced Security Practitioner (CASP), Certified Secure Software Lifecycle (CSSLP), CISSP Special Focus - Information System Security Engineering Professional (ISSEP), CISSP Special Focus - Information System Security Architecture Professional (ISSAP), and/or other certifications exemplifying skill sets such as those described in DoD Instruction Information Assurance Management (IAM) Level II proficiency.
• A bachelor's and/or advanced degree in Computer Science, Cybersecurity, or IT-related discipline is preferred.
• Minimum 8 years' experience, or equivalent education/experience. For example: Doctorate plus 6 years of experience; Master's plus 6 years of experience; Associates plus 10 years of experience; or H.S./GED plus 14 years of experience.

COMPETENCIES 

• Oral Communication
• Written Communication
• Strategic Thinking
• Technical Expertise
• Initiative
• Foster Innovation
• Results Oriented
• Teamwork

We are seeking an Information System Security Engineer (ISSE) to join our team supporting a government customer. TekSynap is a fast-growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. "Technology moving at the speed of thought" embodies these principles – the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers.

The Information System Security Engineer (ISSE) is the Subject Matter Expert for identifying security risks and contributing to the strategic planning of Information Security controls at a government agency, and is responsible for designing, developing, and integrating secure information systems. This role involves conducting threat modeling, implementing security architectures, and validating system compliance with applicable standards such as NIST, RMF, and DoD directives. Responsible for assessing, understanding, and communicating actual and potential security and/or privacy vulnerabilities of government-controlled systems and suggest ways to remove, mitigate, or otherwise reduce the impact of those risks. Working closely with architects, developers, and security teams, the ISSE ensures that security requirements are embedded throughout the system lifecycle—from initial design to deployment and maintenance. This can include identifying controls or appropriate countermeasures that can be deployed to reduce security risks and coordinating with other security professionals and roles. The ISSE is instrumental in bridging the gap between cybersecurity policy and technical implementation.

About the team: This position is part of a contract supporting a federal agency. The team provides Information Systems Security Officer (ISSO), Information Systems Security Engineer (ISSE), and Information Systems Security Representative (ISSR) experts as a service through ISaaS to deliver vulnerability, compliance, and risk management services as part of a cybersecurity workforce. Tasks include creating a mission-focused IT security environment that supports a federal agency's workforce; prioritizing efficiency and encouraging innovation; integrating security into all aspects of IT information systems; and providing comprehensive delivery of security services.

We offer our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays.

Visit us at  

Apply now to explore jobs with us  

The safety and health of our employees is of the utmost importance.  Employees are required to comply with any contractually mandated Federal COVID-19 requirements.  More information can be found here.

"As part of the application process, you agree that TekSynap Corporation may retain and use your name, e-mail, and contact information for purposes related to employment consideration".

WORK ENVIRONMENT AND PHYSICAL DEMANDS

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of the job.  Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. 

• Location: Washington, DC or Huntsville, AL
• Remote or In-Person: 100% onsite
• Type of environment: Office
• Noise level: Medium
• Work schedule: Schedule is day shift Monday – Friday.
• Amount of Travel: Less than 10%

PHYSICAL DEMANDS

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

WORK AUTHORIZATION/SECURITY CLEARANCE

• S. Citizen
• Active Top Secret clearance required

OTHER DUTIES

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

EQUAL EMPLOYMENT OPPORTUNITY

In order to provide equal employment and advancement opportunities to all individuals, employment decisions will be based on merit, qualifications, and abilities. TekSynap does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age, genetic information, or any other characteristic protected by law (referred to as "protected status"). This nondiscrimination policy extends to all terms, conditions, and privileges of employment as well as the use of all company facilities, participation in all company-sponsored activities, and all employment actions such as promotions, compensation, benefits, and termination of employment.