Information Systems Security Engineer (ISSE) - SME - Top Secret Clearance
About The Position
The ISSE is responsible for developing and integrating security engineering solutions throughout the SDLC: Ensure security is incorporated into requirements, design, implementation, testing, and maintenance. Apply secure design principles such as defense-in-depth and least privilege. Collaborate with architects to align system security architecture with mission needs. Perform risk analyses, threat modeling, and vulnerability assessments. Contribute to continuous monitoring activities by reviewing system risk posture. Draft and update SSPPs, Risk Assessment Reports (RARs), SARs, and related artifacts. Support preparation of documentation for ATOs or equivalent authorizations. Ensure documentation reflects current system architecture and controls. Coordinate with ISSOs, ISOs, developers, and assessors throughout security testing and evaluation. Provide security engineering input to development and integration teams. Support compliance with RMF and authorization processes to maintain ATO status. Assist with the configuration and management of tools such as SIEMs, endpoint protection, firewalls, and vulnerability scanners. Analyze security tool outputs to identify anomalies and potential threats. Interpret security requirements from NIST SP 800-53, CNSSI 1253, and related standards. Convert organizational policies and federal regulations into actionable technical requirements. Balances security requirements with operational and mission objectives. Support investigations by analyzing system architecture and configurations. Assist in implementing corrective actions to address vulnerabilities and prevent recurrence.
Requirements
- Bechlors degree in information technology, cybersecurity, data science, information systems, or computer science, from an ABET accredited or CAE designated institution.
- Education Equivalency: One-and-one- half (1.5) years of additional experience can substitute for one (1) year of a typical degree program
- Minimum 10 years of experience in Information Technology (IT) and/or Information Security (IS).
- Active Top Secret Security Clearance
Responsibilities
- Developing and integrating security engineering solutions throughout the SDLC
- Ensuring security is incorporated into requirements, design, implementation, testing, and maintenance
- Applying secure design principles such as defense-in-depth and least privilege
- Collaborating with architects to align system security architecture with mission needs
- Performing risk analyses, threat modeling, and vulnerability assessments
- Contributing to continuous monitoring activities by reviewing system risk posture
- Drafting and updating SSPPs, Risk Assessment Reports (RARs), SARs, and related artifacts
- Supporting preparation of documentation for ATOs or equivalent authorizations
- Ensuring documentation reflects current system architecture and controls
- Coordinating with ISSOs, ISOs, developers, and assessors throughout security testing and evaluation
- Providing security engineering input to development and integration teams
- Supporting compliance with RMF and authorization processes to maintain ATO status
- Assisting with the configuration and management of tools such as SIEMs, endpoint protection, firewalls, and vulnerability scanners
- Analyzing security tool outputs to identify anomalies and potential threats
- Interpreting security requirements from NIST SP 800-53, CNSSI 1253, and related standards
- Converting organizational policies and federal regulations into actionable technical requirements
- Balancing security requirements with operational and mission objectives
- Supporting investigations by analyzing system architecture and configurations
- Assisting in implementing corrective actions to address vulnerabilities and prevent recurrence
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
