Information System Security Engineer (ISSE)-Level 3, OS&CI Job #447
Chantilly, Virginia, United States
Full Time Clearance required USD 63K - 117K *
Allen Integrated Solutions
Information System Security Engineer (ISSE) Level 3
Clearance Required: TS/SCI with Current CI Poly
Minimum Years’ Experience:
Overall Assignment Description:
In this role you will ensure cybersecurity requirements are identified, allocated, implemented, verified and continuously monitored throughout the system life cycle.
What You'll Be Doing:
-
Define system security requirements in coordination with security stakeholders including system engineers, program managers, security control assessors, and authorizing officials.
-
Ensure cybersecurity requirements are identified, allocated, implemented, verified and continuously monitored throughout the system life cycle.
-
Coordinate RMF processing with program, developer and authorizing stakeholders to achieve ATOs.
-
Provide independent cybersecurity advice and guidance to government stakeholders.
-
Develop or review system security designs and architectures.
-
Advise system engineers on best methods to remediate vulnerability findings through the use of security scanning tools
-
Support engineering analysis of alternatives, tradeoffs, and risk treatment decisions
-
Develop cybersecurity documentation in support of customer Risk Management Framework (RMF) process; in accordance with NIST SP 800-37 Rev 2.
-
Work with interdisciplinary teams to deliver trustworthy and secure systems.
What Required Skills You'll Bring:
-
5 years minimum of system and/or security engineering work performed in support of U.S. Government customers subject to Intelligence Community Directive (ICD) 503.
-
(ISC)2 Certified Information System Security Professional (CISSP) or Certified Cloud Security Professional (CCSP) certification.
-
Review and development of RMF Assessment and Authorization (A&A) documentation, e.g. System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POAMs).
-
Proven ability to balance priorities in a dynamic, mission-oriented environment.
-
-
Strong initiative and communication skills.
What Desired Skills You'll Bring:
-
Experience implementing NIST SP 800-53 Revision 4 security requirements and NIST SP 800-53A security assessment procedures.
-
Knowledge of Cloud (i.e. Azure, Amazon C2S, Commercial and GovCloud) security planning, design, and operations.
-
Ability to explain complex cybersecurity issues to a diverse audience in layman's terms
-
Engineering work performed in national security mission environments.
-
Experience implementing or assessing cybersecurity solutions using technologies such as:
-
Nessus, WebInspect, Splunk, Open SCAP
-
Microsoft Windows, Server, Active Directory
-
RedHat Linux; CentOS,
-
Virtualization Platforms: Hyper-V, VMware
-
VDI (Desktop), Citrix
-
Network engineering/design of LANs, WANs, MANs, including underlying routing protocols, and implementation. (TCP/IP, BGP, OSPF)
-
Knowledge of Cross Domain Solutions (CDSs).
-
Experience presenting verbal/written communications to Senior leadership including ISSMs, System Owners, Authorizing officials, security directors
-
Experience with systems engineering lifecycle processes
-
Experience as an advisor the Government ISSM on ATO extensions, body of evidence reviews
-
Participating in RFC/CCB reviews as voting member for Government customer programs
-
Experience guiding systems through the RMF approval process per NIST-800-37.
-
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory Azure CCSP CISSP Citrix Clearance Clearance Required Cloud Hyper-V ISSE Linux Nessus NIST NIST 800-53 Risk management RMF SCAP Security assessment Security Assessment Report Splunk System Security Plan TCP/IP TS/SCI VMware Windows
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Product Security Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Chief Information Security Officer jobs
- Open Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Editor jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Splunk-related jobs