Information Systems Security Engineer (ISSE)
Job Description:
Position is for an Information Systems Security Engineer (ISSE) to support the Information Assurance (IA) team (ISSM, ISSO), system administrators, and program technical staff for ongoing and emerging programs requirements. Responsibilities include implementing Information Assurance and Information Security protections and requirements in program development and execution environments. Duties will include performing analysis, identifying and implementing protection solutions, and preparing and maintaining engineering and security related documentation. Specific tasks could include and or be related to, but will not be limited to, the following. Performing vulnerability assessments; Certification and Accreditation (C&A) activities (e.g., DoD, RMF, NIST); implementation of security controls in networking devices databases, operating systems, hardware and software components; administering and managing IA Vulnerability Alerts (IAVA), and security Plan of Action and Milestones (POA&M) mitigations through timely assessment of IAVA notices and POA&M corrective actions; conducting technical and nontechnical reviews and audits as necessary to support development and test efforts both in house and at customer sites; assisting system administrators and ISSM in maintaining system accreditations in accordance with the approved IA program and procedures.
Basic Qualifications:
Desired Qualifications:
Job Description:
Position is for an Information Systems Security Engineer (ISSE) to support the Information Assurance (IA) team (ISSM, ISSO), system administrators, and program technical staff for ongoing and emerging programs requirements. Responsibilities include implementing Information Assurance and Information Security protections and requirements in program development and execution environments. Duties will include performing analysis, identifying and implementing protection solutions, and preparing and maintaining engineering and security related documentation. Specific tasks could include and or be related to, but will not be limited to, the following. Performing vulnerability assessments; Certification and Accreditation (C&A) activities (e.g., DoD, RMF, NIST); implementation of security controls in networking devices databases, operating systems, hardware and software components; administering and managing IA Vulnerability Alerts (IAVA), and security Plan of Action and Milestones (POA&M) mitigations through timely assessment of IAVA notices and POA&M corrective actions; conducting technical and nontechnical reviews and audits as necessary to support development and test efforts both in house and at customer sites; assisting system administrators and ISSM in maintaining system accreditations in accordance with the approved IA program and procedures.
Basic Qualifications:
- 6+ years of progressive technical (hands-on) experience related to Information Assurance/Cyber Engineering requirements, determination, development, and implementation
- Bachelor's Degree in Computer Science, Information Technology, Engineering or related technical field (Master's Degree preferred) or equivalent experience
- Experience implementing Risk Management Framework (RMF) Process and NIST 800-53 technical controls and developing and maintaining associated certification and accreditation documentation
- Experience in security systems engineering involving various computer hardware and software operating system and application solutions in both stand-alone and LAN/WAN configurations
- Experience with security features and/or vulnerability of various operating systems as defined by NIST, DISA (STIGs), and USCYBERCOM. Experience with network and system security administration, including operating system security configuration and account management best practices for UNIX (HP-UX & Solaris), Window Server, Windows clients, Microsoft Exchange, Red Hat Enterprise Linux, CentOS , Ubuntu and CISCO systems
- Experience with performing patch updates and vulnerability remediation
- Experience with IA vulnerability testing and related network and system test tools; e.g., Retina, NMap, ACAS, EVSS, HBSS, Nessus, Security Content Automation Protocol (SCAP)
- Experience with cyber security toolset including anti-virus, Vulnerability Assessment, HIDS and NIDS
- Hands on experience with configuring and maintaining networking devices (firewalls, switches, routers, Taclanes, NSA Type I encryption, etc.)
- DoDI 8570.01-M IAT/IAM Level-III Compliant Certification (such as CISSP)
- Experience working U.S. Government contract proposals as an Information Assurance/Information Security Engineering subject matter expert
- Minimum, Current U.S. Government Top Secret clearance with SCI eligibility
Desired Qualifications:
- Familiarity with Program Protection Plan (PPP) required by DoDI 5000.02 and DoDI 5200.39
- Familiarity with Anti-Tamper/System Integrity concepts
- Security-related Network (e.g., Cisco) and Operating Systems (e.g., Solaris) certification or training
- Experience briefing senior U.S. Government and company program leadership
- Self-starter requiring limited direction and supervision
- Ability to organize and prioritize numerous customer requests in a fast paced, deadline driven environment
- Willing to travel