Job Description :
Senior Information Systems Security Engineer to join our team and support the security needs of mission-critical systems in a secure, onsite environment.
The ideal candidate will have 10 years of experience in supporting Assessment and Authorization (A&A) processes, with a deep understanding of Risk Management Framework (RMF) and information assurance.
This role involves working closely with software developers and architects to interpret and implement security requirements, guide development teams on security policy, and ensure the satisfaction of security controls.
The candidate should have hands-on experience with DISA STIGs, STIG Viewer, and control implementation validation, along with strong knowledge of security risks and protocols.
The position requires a DoD 8570 IAT Level 3 or IAM Level 2 certification and an active TS clearance with the ability to obtain SCI and polygraph.
Desired qualifications include experience with cloud-hosted systems, Linux operating systems (Redhat, CentOS), and working in DevSecOps environments.
The ideal candidate should be proficient in creating security tools for scanning, testing, and monitoring, as well as overseeing configuration changes for major applications across multiple networks.
Strong analytical and problem-solving skills are essential for success in this role.
Experience : 12+ years of relevant professional experience with Bachelor's, 8+ with Master's, 5+ with PhD.
Education : Bachelor's or Master's degree in Software Engineering, Computer Science, Information Systems, or related field
Security : Current / active TS / SCI clearance with CI polygraph or willingness to take one. Background investigation required, including a minimum of a criminal and credit check as well as at least three professional references.
Minimum Requirements :
10 years of experience that includes supporting Assessment and Authorization (A&A) and information assurance processes and documentation using RMF, BS degree;
8 years of experience with a masters
Experience working with software developers and architects to understand security requirements
Experience guiding application developers on security policy, identifying security requirements, and providing technical guidance for the satisfaction of requirements
DISA STIGs and STIG Viewer experience
Hands-on experience in developing and validating control implementations and test procedures
Knowledge of current security risks and protocols
DoD Approved 8570 IA Technical (IAT) Level 3 or IA Management (IAM) Level 2 Certification
RMF, Xacta experience
Active TS clearance adjudication with the ability to obtain SCI and polygraph
Willing to work 100% onsite in a secure environment
An Excellent Candidate for this position will meet most of the following experience requirements :
Experience working with cloud-hosted information systems or applications
Experience working with Redhat or CentOS Linux operating systems
Experience working in a DevSecOps environment and toolchain
Creating and using security tools and processes for scanning, testing, monitoring, and reporting
Experience in planning and overseeing configuration changes for major applications across multiple networks
Good analytic and problem-solving skills
Strong understanding of data governance and security practices
Experience working in Agile / Scrum environments
Ability to work collaboratively in a team environment
Strong problem-solving skills and attention to detail
Eagerness to learn and adapt to new technologies and methodologies
General personal traits we know will connect well with the team :
Superior communication skills
A positive, willing attitude
An ability to think on your feet and solve problems quickly
Adaptability to learn new methodologies and technologies
Comfortable working in an agile team environment
Technology and methodology agnostic, but accepts using tools needed for the requirement
Enjoys coaching and teaching.