Information Systems Security Engineer – (Senior / Expert)

Job Description :

Senior Information Systems Security Engineer to join our team and support the security needs of mission-critical systems in a secure, onsite environment.

The ideal candidate will have 10 years of experience in supporting Assessment and Authorization (A&A) processes, with a deep understanding of Risk Management Framework (RMF) and information assurance.

This role involves working closely with software developers and architects to interpret and implement security requirements, guide development teams on security policy, and ensure the satisfaction of security controls.

The candidate should have hands-on experience with DISA STIGs, STIG Viewer, and control implementation validation, along with strong knowledge of security risks and protocols.

The position requires a DoD 8570 IAT Level 3 or IAM Level 2 certification and an active TS clearance with the ability to obtain SCI and polygraph.

Desired qualifications include experience with cloud-hosted systems, Linux operating systems (Redhat, CentOS), and working in DevSecOps environments.

The ideal candidate should be proficient in creating security tools for scanning, testing, and monitoring, as well as overseeing configuration changes for major applications across multiple networks.

Strong analytical and problem-solving skills are essential for success in this role.

Experience : 12+ years of relevant professional experience with Bachelor's, 8+ with Master's, 5+ with PhD.

Education : Bachelor's or Master's degree in Software Engineering, Computer Science, Information Systems, or related field

Security : Current / active TS / SCI clearance with CI polygraph or willingness to take one. Background investigation required, including a minimum of a criminal and credit check as well as at least three professional references.

Minimum Requirements :

10 years of experience that includes supporting Assessment and Authorization (A&A) and information assurance processes and documentation using RMF, BS degree;

8 years of experience with a masters

Experience working with software developers and architects to understand security requirements

Experience guiding application developers on security policy, identifying security requirements, and providing technical guidance for the satisfaction of requirements

DISA STIGs and STIG Viewer experience

Hands-on experience in developing and validating control implementations and test procedures

Knowledge of current security risks and protocols

DoD Approved 8570 IA Technical (IAT) Level 3 or IA Management (IAM) Level 2 Certification

RMF, Xacta experience

Active TS clearance adjudication with the ability to obtain SCI and polygraph

Willing to work 100% onsite in a secure environment

An Excellent Candidate for this position will meet most of the following experience requirements :

Experience working with cloud-hosted information systems or applications

Experience working with Redhat or CentOS Linux operating systems

Experience working in a DevSecOps environment and toolchain

Creating and using security tools and processes for scanning, testing, monitoring, and reporting

Experience in planning and overseeing configuration changes for major applications across multiple networks

Good analytic and problem-solving skills

Strong understanding of data governance and security practices

Experience working in Agile / Scrum environments

Ability to work collaboratively in a team environment

Strong problem-solving skills and attention to detail

Eagerness to learn and adapt to new technologies and methodologies

General personal traits we know will connect well with the team :

Superior communication skills

A positive, willing attitude

An ability to think on your feet and solve problems quickly

Adaptability to learn new methodologies and technologies

Comfortable working in an agile team environment

Technology and methodology agnostic, but accepts using tools needed for the requirement

Enjoys coaching and teaching.