Senior Information System Security Engineer (On-Site & TS/SCI)

Senior Information System Security Engineer

Interested in learning more about this job Scroll down and find out what skills, experience and educational qualifications are needed.

Primary Place of Performance : Washington, DC

Mandatory Requirements : U.S. Citizenship and TS / SCI Clearance

Years of Experience : Senior Level (8-10+ Years)

Currently seeking a talented and motivated Senior Information System Security Engineer to join our team focused on building, securing, and maintaining DOD network infrastructure.

The successful candidate will play a crucial role in protecting critical infrastructure from cyber threats and ensuring the continuous, safe operation of critical systems.

This position will be part of a team of network, system and security engineers tasked with the remediation of existing network equipment and upgrading to new equipment.

If you are passionate about security, have the requisite skills and qualifications, and are looking for an opportunity to grow within a dynamic organization, this position may be for you.

Required Skills and Qualifications :

• Expert knowledge of full DoD Risk Management Framework accreditation process.
• Capable of managing POA&M monitoring and remediation.
• Supervise the Authorization and Accreditation (A&A) activities and the Authority to Operate (ATO) package documentation.
• Proven experience implementing NIST 800-53 policy standards.
• Extremely strong technical understanding of Windows and Linux platforms.
• Experience taking new IT and network system(s) through the ATO process.
• Experience using XACTA and EMASS platforms.
• Proficient in DoD STIG process and requirements.
• Working technical knowledge of network security tools and tactics.
• Experience with DoD STIGS, IA Tools (SCCVI, SCRI, Host Based Security System), program and Risk Management Framework.
• Excellent problem solving and troubleshooting skills.
• Strong written and verbal communication skills to interface with technical and non-technical stakeholders.
• Stays current on the latest networking technologies and trends.

Duties to Include but not limited to :

• Provide information and documentation for status reports, briefings, schedules, and project plans in written and oral form.
• Conduct security reviews for changes impacting hardware, software, baselines, connections, or applications.
• Establish procedures & processes to ensure tracking and mitigation of risks identified during the ATO process.
• Develop and update System Security Plans (SSPs) and support documentation.
• Oversee development of security and privacy control implementation statements per NIST SP 800-53 and agency security policy standards.
• Provide Risk Management Framework (RMF) and Authorization and Accreditation (A&A) activities such as developing and maintaining systems Authority to Operate (ATO) package documentation.
• Develop and manage remediation plans and actions with system engineers for action.
• Fully document vulnerabilities, issues, remediation efforts, and scanning operations.
• Provide technical insights and recommendations to the customer in verbal and written reports.
• Implement network security measures and best practices.
• Maintain network security infrastructure documentation and procedures.
• Travel : Up to 5% travel required and the ability to travel on short notice.

Preferred Education and Experience :

Preferred Bachelor’s degree in Information Technology, Computer Science, Cyber Security, or a related engineering field.

In lieu of degree, a minimum of 10+ years of experience in a cyber security role with direct RMF experience.

• Minimum Required Certification : DOD 8570 IAT III Certification (Ex. CISSP, GCIH, CASP+).
• Required Minimum Active DOD TS / SCI Clearance.
• US citizenship and ability to pass extensive background checks.

Competitive benefits package includes :

• 100% employer-paid medical, dental, vision plan for each employee and dependents.
• 401(k) plan retirement plan with 3% company match and vesting from day one.
• Generous leave policy including 15 vacation days.
• Reimbursement for job-related certifications, generous training budget and company provided access to training platforms.

About JFL Consulting, LLC

With more than twenty years of securing some of the U.S. Department of Defense and the Intelligence Community’s most critical networks, JFL Consulting, LLC provides advanced network security solutions to a range of US Government and US commercial clients.

Our cybersecurity operators are experts at assessing and defending mission-critical data and the networks that facilitate their operation.

We are focused on delivering advanced products and industry best practices that meet each customer’s unique requirements.

Visit www.jflconsulting.com.

JFL Consulting, LLC is an Equal Opportunity Employer.

We do not discriminate against any applicant for employment on any legally recognized basis including, but not limited to : race, religion or creed, color, national origin, sex, age, disability, marital status, sexual orientation, genetic information, veteran status, status with regard to public assistance or any other protected class under federal, state or local statute.

It is also the policy of JFL Consulting, LLC to provide reasonable accommodations for qualified individuals with disabilities.

J-18808-Ljbffr