Information Systems Security Engineer (ISSE)

About the Team:

The Security team at STR is comprised of highly skilled professionals who are responsible for maintaining compliance IAW with Government protocol and directives. 

The Classified Cybersecurity (CCS) team consists of a collaborative group of ISSM’s, ISSO’s, and ISSE’s who are passionate about national security that take great pride in maintaining confidentiality, integrity, and availability of our systems. 

The Role:

STR has an exciting opportunity for an ISSE to function as a key contributor for classified programs Cybersecurity/Risk Management Framework (RMF) posture in accordance with government directives and program requirements. 

In this dynamic position you will interface and collaborate with other Cybersecurity professionals (ISSM’s, ISSO’s), Security professionals (CPSO’s, FSO’s), and System Administrators, on overall compliance and configuration change management.

Please note…this is not a remote and/or hybrid role and a requires you to be onsite.

Responsibilities:

• Conduct both vulnerability and compliance scans of Information Systems
• Support the development of Risk Management Framework (RMF) documentation and control validation testing for Authority to Operate (ATO) accreditations
• Support the development of cybersecurity requirements, design, and architecture
• Implement Information Assurance and Information Security protections and requirements in program development and execution environments
• Implement required security controls of networking devices, databases, operating systems, and hardware and software components
• Review/manage various IA Vulnerability Alerts (IAVA) (i.e., US-CERT, etc.) and overall remediation
• Assist ISSM’s and ISSO’s in monitoring and resolving Plan of Action and Milestones (POA&M) to mitigate system vulnerabilities
• Conduct reviews/technical inspections to identify and mitigate potential security weaknesses and ensure that all security features applied to a system are implemented and functional
• Support completion of Continuous Monitoring requirements IAW RMF and NIST SP800-53 requirements
• Perform other tasks as assigned by manager

Who you Are: 

• This position requires an active Top Secret security clearance, with the ability to obtain an SAP and SCI access for which U.S. citizenship is needed by U.S. Government
• Two (2) to Five (5) years of technical (hands-on) experience related to Information Assurance/Cyber Engineering requirements, development, and implementation
• DoD 8570 IAM Level III certification (CISA, CISM, CISSP, etc.) or the ability to obtain within 6 months upon being hired
• Experience with NIST SP800-53 control implementation and assessment
• Familiarity with the DCSA Authorization and Assessment Process Manual (DAAPM) and the Joint Special Access Implementation Guide (JSIG)
• Experience with configuration/certification and auditing/analysis of Windows/Linux operating systems and system virtualization in peer-to-peer, LAN & WAN networks
• Experience with managing and implementing DISA STIGs and benchmarks in a variety of operations systems (Windows, Linux, Ubuntu)
• Experience with various IA vulnerability/compliance scanning tools (e.g., NMap, ACAS, Nessus, Security Content Automation Protocol (SCAP)
• Experience with maintaining/managing Security Incident and Event Management (SIEM) and centralized auditing tools (i.e., Splunk, PowerStrux)
• Familiarity with Microsoft Deployment Toolkit (MDT)
• Support hardening of new builds of Information Systems (IS) and ensure full functionality before deployment
• Familiarity with Windows and/or Linux scripting
• McAfee/Trellix ePO administration, to include familiarity with DLP components
• Detail oriented and self-motivated
• Excellent communication skills
• Ability to effectively prioritize multiple projects
• Ability to work with people in a team environment and deal effectively with changing project priorities