Information Security Systems Engineer Senior

About The Position

Requirements

• Bachelor's Degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Eight (8) or more years in information technology and cybersecurity, with a focus on federal government or DoD environments.
• Expert knowledge of the Risk Management Framework (RMF), including the full ATO lifecycle, from initial assessment to continuous monitoring.
• Proven experience developing and managing security artifacts, such as SSPs, POA&Ms, and other CDRL items, preferably within eMASS.
• Demonstrated technical expertise with virtualization technologies, specifically VMware, and experience designing and managing virtual environments.
• Demonstrated ability to assess and harden systems, including legacy Windows/Linux systems and network hardware (Cisco, Juniper), using tools like Nessus, SCAP, and STIGs.
• Proficiency in scripting and automation using languages like Python, Bash, or PowerShell to automate compliance and security tasks.
• Self-motivated, strategic thinker capable of leading complex technical projects with minimal direct supervision.
• Exceptional interpersonal, communication, and presentation skills, with the ability to interact effectively with technical teams, leadership, and customers.
• Must be eligible to obtain and maintain a Top-Secret security clearance.
• DoD 8140 foundational and residential qualification withing twelve (12) months of hire start date.
• Ability to travel 20% within Florida
• Ability to push/pull 30 pounds
• Ability to climb up and down stairs
• The flexibility to work occasional non-duty hours or on weekends to support specific project or mission requirements

Nice To Haves

• Strong understanding of DoD Cybersecurity Policies and Procedures and experience transitioning systems from DIACAP to RMF is highly desirable.

Responsibilities

• Cybersecurity & RMF Leadership: Serve as a Lead and as a Subject Matter Expert (SME) of a team of ISSE’s for cybersecurity and compliance activities.
• Develop and manage the full Risk Management Framework (RMF) packages to achieve ATO accreditation for current and future enclaves.
• ATO Artifact & Policy Development: Develop, modify, and review all required security artifacts and documentation (CDRLs) for ATO packages, including system security plans, contingency plans, and STIG checklists.
• Translate complex DoD/DOW and NIST policies into actionable system-level requirements.
• Vulnerability Management & Security Hardening: Independently perform vulnerability assessments using tools like Nessus and SCAP.
• Analyze results, lead mitigation efforts, develop Plans of Action & Milestones (POA&Ms), and apply STIGs to harden both virtualized and physical systems.
• Automation & Process Improvement: Leverage scripting languages (Python, Bash, PowerShell) to automate security checks, data normalization, log analysis, and compliance reporting, improving efficiency and accuracy.
• Digital Transformation & Modernization: Drive innovation and automation efforts.
• Research and recommend new technologies and processes to continuously improve the LTRS cybersecurity capabilities.
• Stakeholder Engagement: Organize, develop, and present briefings, technical reports, and risk analyses to SFRC leadership, government customers, and engineering teams.

Benefits

• Our health and welfare benefits are designed to support you and your priorities.
• Offerings include:
• Health, dental, and vision insurance
• Paid time off and holidays
• Retirement benefits (including 401(k) matching)
• Educational reimbursement
• Parental leave
• Employee stock purchase plan
• Tax-saving options
• Disability and life insurance
• Pet insurance
• Note: Benefits may vary based on employment type, location, and applicable agreements.
• Positions governed by a Collective Bargaining Agreement (CBA), the McNamara-O'Hara Service Contract Act (SCA), or other employment contracts may include different provisions/benefits.