Information Systems Security Engineer
Sterling, Virginia, United States - Remote
Full Time Senior-level / Expert Clearance required USD 53K - 125K *
Northstrat
Northstrat is seeking an Information Systems Security Engineer to join our team. The ideal candidate will have experience in the following areas: secure software engineering practices in support of Department of Defense (DoD) or Intelligence Community (IC) customers, application of NIST Special Publications 800 security controls and the Risk Management Framework (RMF) process, and system vulnerability scanning.
Key Responsibilities
· Planning and managing the system application of NIST Special Publications 800 series security controls.
· Perform system vulnerability scanning, documenting results, and working with the development team to address security findings.
· Generation of comprehensive system security documentation and artifacts, to include a Plan of Action and Milestones (POA&M), for obtaining and maintaining Interim Authorization to Test (IATT), Authority to Connect (ATC) and Authorization to Operate (ATO).
Requirements
· Must have bachelor’s degree in a STEM related field.
· Must have 2+ years of relevant experience.
· Must have a CompTIA Security+ certification
· Must be a U.S. citizen.
· Must have an active Top-Secret clearance with SCI or SCI eligible.
· Knowledge of, and practical experience with the NIST Special Publications 800 Series and the Risk Management Framework (RMF) process.
· Familiar with secure software engineering practices in support of Department of Defense (DoD) or Intelligence Community (IC) customers.
· Experience with Authorization and Accreditation (A&A) process using RMF for classified systems obtaining and maintaining Interim Authorization to Test (IATT), Authority to Connect (ATC) and Authorization to Operate (ATO).
· Experience with vulnerability scanning.
· Experience with security tools such as: Assured Compliance Assessment Solution (ACAS), and Security Technical Implementation Guide (STIG)'s.
· Familiar with information security principles and best practices.
Preferred Qualifications
· Familiar with tiered security environments (U, S, TS).
· Familiar with AWS security services.
· Familiar with AWS infrastructure services.
· Familiar with Agile development methodologies.
Benefits
Work/Life Balance
Northstrat values true work life balance. We offer power of choice benefits designed to best meet the needs of you and your lifestyle. Our benefits programs are designed to support and encourage wellness, healthy living, retirement investment, and lifetime learning.
Flex Time
Northstrat does not mandate specific working hours. Although project requirements may dictate schedules, a Northstrat employee is only required to work an average of 8 hours per weekday over the course of a month. For example: John worked 12 hours on June 1st to meet a project deadline. On June 15th, John only worked 4 hours because he left early for a long weekend. John’s IBA was not debited for time off because flex time allowed him to carry over those 4 hours from June 1st.
Individual Benefits Account (IBA)
To attract and retain the highest quality staff, Northstrat provides a unique and versatile benefits package, the Individual Benefit Account (IBA), which places the power of choice in the hands of our greatest asset – the employee.
The purpose of the IBA is to provide attractive benefits to all full-time employees of Northstrat on a flexible basis that enables each covered employee to select a package that best suits his or her needs. Whether those needs are paid time off, medical expenses, prescription drug expenses, cash disbursement, or a combination of any of these, the IBA provides flexibility to help you meet your specific goals. The IBA can be used for such things as:
- Medical and Vision Insurance through United Health Care; Dental insurance through Delta Dental
- 100% Medical Reimbursement
- Time Off with Pay
- Profit Sharing Plan
- 401k
- Educational Benefits
- Additional Income
IBA Benefits accrue each month in the amount equivalent to 50% of the employee’s monthly compensation rate. That is, the effective dollar amount of this accrual is in addition to an employee’s salary.
Profit Sharing Plan (PSP)
The PSP is a qualified retirement plan that Northstrat funds semi-annually on the employee’s behalf through the IBA in the amount equivalent to 25% (up to the IRS contribution limit) of the employee’s compensation. That is, of the 50% accrual in the IBA, half of the amount accrued is applied to the PSP.
Stock Options
Because Northstrat is an employee-owned company, all new employees are offered stock options. Employees have the opportunity to receive additional stock options based on accomplishment of individual performance goals. Stock owners elect the Board of Directors and are directly impacted by the success of the company.
Lifelong Learning
Our culture promotes and nurtures a growth environment. We hire and scale rapidly to meet the needs of our partner customers. Through the use of company provided online learning opportunities, periodic company sponsored training events, and the ability to use IBA funds for reimbursement of work-related education expenses you will have the opportunity to continually grow your skills and abilities.
Bring Your True Self
We embrace diversity and encourage inclusion. We support employee led interest groups and challenge our employees to support others and be their best self. We are so true to our beliefs that we offer employee referral incentives. When you like it here, your friends and family will too!
Northstrat is an Equal Opportunity Employer
We are committed to fostering an inclusive, diverse workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other legally protected status.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: ACAS Agile AWS Clearance Compliance CompTIA DoD ISSE NIST POA&M Risk management RMF STEM
Perks/benefits: 401(k) matching Career development Equity / stock options Flex hours Flex vacation Health care Insurance Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Cybersecurity Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Product Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Information System Security Officer (ISSO) jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open DoD-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs