Junior-level ISSE

Dark Wolf Solutions is seeking a motivated and experienced Junior-level ISSE to join our collaborative team. In this role, you will be instrumental in planning, implementing, managing, monitoring, and upgrading our information system cybersecurity posture in accordance with industry-leading standards. You will play a critical part in ensuring our organization's data, infrastructure, and processes are protected by enabling appropriate security controls.

Responsibilities:

• Work collaboratively to plan, implement, manage, monitor, and upgrade information system cybersecurity posture in accordance with NIST 800-53, NIST 800-160 v1 & v2, and NIST 800-207.
• Ensure the organization’s data, infrastructure, and processes are protected by enabling appropriate security controls.
• Conducting regular risk assessments and vulnerability scans to identify potential security gaps and recommend appropriate mitigation strategies.
• Configure and manage compliance scanning and vulnerability tools to perform regular assessments and generate reports.
• Assisting in the development, implementation, and enforcement of information security policies and procedures.
• Research and document network and system vulnerabilities, providing clear and actionable recommendations.
• Participate in security incident response activities, providing technical expertise and support.
• Contribute to the DevSecOps cycle and change management process, ensuring security is integrated throughout the software development lifecycle.
• Effectively communicate security requirements, best practices, and remediation strategies to stakeholders across the organization.

Qualifications:

• A Bachelor’s Degree or equivalent experience in Computer Science, Information Systems, Engineering, or a related technical discipline.
• Junior Level: Minimum of 2 years of experience in cybersecurity. 
• Experience working with cloud environments (AWS, Azure, GCP) including cloud security control mechanisms (AWS IAM, Azure AD).
• Experience working with Commercial and Open-Source security tools, methods, and techniques.
• Experience with DevSecOps, continuous monitoring strategies, and knowledge of Risk Management Framework.
• Basic understanding of industry best practices related to the implementation of cybersecurity tools, information security policy, NIST, and FISMA controls.
• Demonstrated experience researching, analyzing, and applying cybersecurity mitigation strategies to address vulnerabilities.
• Security+ and/or DoD 8570 IAT II-level certification or ability to attain within 6 months of hire.
• Experience working with Department of Defense security standards and tools (e.g., STIGs, SRGs, SCC, CIS).

Desired Qualifications:

• Experience implementing and using vulnerability scanning tools (e.g. Nessus, Tenable.sc, AWS Inspector, etc.).
• Experience implementing and using SIEM tools (e.g., Splunk, Elastic, etc.).
• Experience with various compliance tools, frameworks, and standards used in the DoD (e.g., NIST 800-53 Rev. 4/5, FedRAMP).
• Ability to identify basic coding flaws and apply secure code documentation.
• Knowledge of Software Development models including quality assurance processes.