Information Systems Security Engineer (ISSE)
Virginia, USA
Full Time Senior-level / Expert Clearance required USD 37K - 70K *
OneZero Solutions
OneZero Solutions is an 8(a), Service-Disabled Veteran-Owned Small Business (SDVOSB) that is problem-solving and solutions-oriented. OneZero specializes in cybersecurity operations, information assurance, computer network operations, solutions...We are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technically proficient and technically capable across a comprehensive range of cyber mission areas. OneZero full-time employees receive an extremely competitive benefits package that includes health/dental/vision/life insurance plans, 401K with company matching, PTO & paid holidays, employee referral program, and educational assistance. Additional details can be found on our website at: https://www.onezerollc.com/careers/
Position Title: Information Systems Security Engineer (ISSE) Senior
Location: Alexandria VA
Clearance: Secret
Join OneZero's dynamic team as we seek driven Information Systems Security Engineers (ISSE) to bolster cybersecurity efforts for our valued US Coast Guard (USCG) customers. In this role, you'll play a pivotal part in refining and fortifying enterprise Endpoint Detection and Response as well as Security Information and Event Management (SIEM) solutions and services. Your mission? Ensuring that our technologies adhere rigorously to DoD cybersecurity engineering standards and policies, both in their development and ongoing maintenance. You'll serve as a key conduit between the CG C5ISC engineering and Information Systems Security teams, facilitating seamless collaboration to achieve system Authorization to Operate (ATO) milestones and to sustain security throughout the Risk Management Framework's Continuous Monitoring phase. Step into a role where your expertise shapes the security landscape for a critical maritime institution.
Job Summary
- Participate in the design and validation of security controls and hardening requirements within USCG EDR and SIEM capabilities.
- Conduct comprehensive security assessments identifying vulnerabilities and the remediation efforts of those findings.
- Serve as the engineering team's primary engagement point for the ISSO team in support of RMF Security Assessment and Authorization (SA&A) and Continuous Monitoring tasks
- Support the system ATO effort by identifying, collecting, and creating required SA&A artifacts such as system Visio drawings, local policies and plans, screenshots and extracts, STIG Checklists, and others as requested by the ISSO team.
- Assist in the configuration and management of EDR, SIEM, and supporting infrastructures
- Develop and maintain secure network architectures and system configurations.
- Work with system owners and developers to integrate security controls into system development and implementation processes.
- Stay current with evolving security threats, vulnerabilities, and industry best practices.
- Collaborate with ISSO and other DHS teams on incident response and remediation efforts.
- Mentor and guide junior ISSO staff, fostering professional development.
Qualifications
- 7+ years of direct experience serving as an Information Systems Security Engineer (ISSE) within the DoD/Federal Government. USCG experience is a plus.
- Proven track record of success in designing, implementing, and maintaining secure IT systems, demonstrating innovation, initiative, and problem-solving skills.
- In-depth understanding of information security principles and best practices, including network security, cybersecurity engineering, cryptography, system security, vulnerability management, and incident response.
- Working knowledge of the DoD RMF Security Assessment methodology and tools such as eMASS and ACAS.
- Familiarity with cybersecurity EDR and SIEM technologies such as Trellix, Microsoft Sentinel and Defender, Tanium, Elastic, etc.
- Familiarity with common IT infrastructure types, including physical and virtualized servers (Microsoft, Linux).
- Familiarity with cloud hosting environments and service types (Azure, AWS, SaaS, PaaS, IaaS), the DoD Cloud SRG.
- Experience with relevant security frameworks and standards, such as the NIST Cybersecurity Framework, FISMA, RMF, FedRAMP, and the DoD Cloud Services Approval Process.
- Demonstrated experience in creating system drawings in Microsoft Visio and usage of other Microsoft Office productivity applications.
- Excellent analytical and problem-solving skills.
- Strong written and verbal communication skills.
- Ability to work independently and as part of a team in a fast-paced environment.
Requirements
Active DoD Secret or higher security clearance
DoD 8570 IAT Level II certification with a secondary Computing Environment certification (OS, Cloud, EDR or SIEM)
Bachelor's degree or higher in Cyber Security is a plus
Must be local to the Northern Virginia metropolitan area
OneZero Solutions, LLC is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access www.onezerollc.com/careers as a result of your disability.
To request an accommodation, please contact us at recruiting@onezerollc.com or call (202) 987-2580.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: ACAS AWS Azure Clearance Cloud Cryptography DoD DoDD 8570 DoD RMF EDR eMASS FedRAMP FISMA IaaS Incident response ISSE IT infrastructure Linux Monitoring Network security NIST PaaS Risk management RMF SaaS Security assessment Security Clearance Sentinel SIEM Vulnerabilities Vulnerability management
Perks/benefits: Career development Health care Insurance
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Cybersecurity Analyst jobs
- Open Senior Cybersecurity Engineer jobs
- Open Security Operations Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Analyst jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Agile-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open PowerShell-related jobs