Information System Security Engineer (ISSE)

Job Summary:

DT Professional Services is seeking a mid level Information System Security Engineer (ISSE) who will coordinate the security design for cloud resident systems & services in a hybrid capacity in Chesapeake, VA. Job duties will include requirements gathering, defining security roadmaps, creating security procedures, developing security policies and defining security controls in accordance/compliance with the Risk Management Framework (RMF). The ISSE will work towards gaining Assessment & Authorization (A&A) approvals for systems designed to reside on cloud resident systems. As with any position, additional expectations exist, which include, but are not limited to: Adhering to typical working hours, Meeting deadlines, Following company policies as outlined by the Employee Handbook, Communicating regularly with assigned supervisor, Staying focused on the assigned tasks and Completing other tasks as assigned.

Responsibilities:

• Conducting security lifecycle and technical impact assessment including design requirements assessments, threat modeling, source code reviews and new technology impact assessment
• Leading security systems engineering involving hardware and software operating system and application solutions
• Utilizing expertise with security features and/or vulnerability of various operating systems as defined by U.S. Air Force, NSA, NIST & DISA and USCYBERCOM
• Conducting IA vulnerability testing
• Utilizing System Engineering requirements, specifications, and processes in support of system IA certification requirements
• Implementing DoD and Federal IA Assessment & Authorization (A&A) Processes, IA controls and developing and maintaining associated A&A documentation IAW Risk Management Framework (RMF)
• Supporting security authorization activities and ensure compliance with RMF and development of security Plan of Actions and Milestone (POA&M) mitigations

Basic Qualifications:

• Must have an active DoD issued Secret Security Clearance
• Must meet DoD 8750.01 IAM Level II or higher (Sec+ cert, CISSP)
• Bachelor’s Degree (BA/BS) in Information Systems, Computer Science, or another related field
• Demonstrated knowledge of cloud security and cybersecurity solutions including engineering architecture, requirements, determination, development, and implementation
• Demonstrated knowledge of advanced cyber threats and adversary methodologies
• Proven ability to implement new ideas and techniques that advance the state of the practice for cloud and cyber defensive operations
• Demonstrated experience with security features and/or vulnerability of various DoD operating systems
• Demonstrated experience implementing DoD and Federal Cybersecurity Assessment & Authorization (A&A) Processes, Risk Management Framework (RMF) controls and developing and maintaining associated A&A documentation
• Documented experience working U.S. Government contract proposals
• Proven experience with Windows Server, Microsoft Exchange, Microsoft Office products, Windows client OS and security, Network protocols and topologies, Routers, Firewalls, Gateways, and Unix-based operating systems
• Demonstrated ability to work effectively in a leadership-type role, ability to work independently with minimal supervision

Preferred Qualifications:

• Master's Degree
• 8+ years of experience
• Proven ability to work effectively and manage multiple priorities while collaborating with internal and external cross-functional teams
• Demonstrated ability to communicate effectively with users, project teams, and management
• Demonstrated ability to work on a variety of problems of moderate scope and complexity where analysis of the situation or data requires thorough identification of factors and analysis of impact
• Demonstrated ability to respond to significant inquiries from users
• Demonstrated ability to define problems, collect data, establish facts, and draw valid conclusions

The compensation range for this position: $130k - $145k annually.