Today
Top Secret/SCI
Unspecified
Full Scope Polygraph
IT - Security
Chantilly, VA (On-Site/Office)
We are seeking a highly skilled Information Systems Security Engineer (ISSE) to support the security accreditation and assessment of multiple applications. This role requires a deep understanding of risk management, security frameworks, and technical expertise in system security hardening, vulnerability assessments, and compliance. The ideal candidate will have experience working with accreditation staff and utilizing security tools to ensure systems meet established security requirements.
Key Responsibilities:
Facilitate the Assessment & Authorization (A&A) process for multiple security applications.
Utilize customer-specific tools for accreditations and security documentation.
Prepare system security plans, risk assessments, security standard operating procedures (SOPs), and contingency plans.
Work closely with customer accreditation staff to address security requirements and ensure compliance.
Perform security hardening for Windows and Linux systems, including ports, protocols, security groups, and patching.
Conduct technical briefings and Technical Exchange Meetings (TEMs) to communicate security-related information to non-technical stakeholders.
Develop security assessment criteria to ensure development teams comply with A&A requirements.
Provide high-level guidance on cloud solutions (Amazon Web Services) and security best practices.
Apply agile methodologies in security engineering workflows.
Use vulnerability scanning software to identify and mitigate system risks.
Implement Risk Mitigation Frameworks aligned with customer policies.
Ensure compliance with encryption standards and secure system communications.
Support the secure implementation of Software Development Life Cycle (SDLC) processes.
Bachelor's degree in Computer Science, Information Systems, or a related field, or equivalent work experience. Proven experience in security hardening for Windows and Linux environments. Knowledge of risk mitigation frameworks as they apply to organizational security policies. Expertise in encryption standards and secure data management. Strong understanding of SDLC and secure software development practices. Ability to collaborate in a dynamic, fast-paced environment while ensuring security compliance.
Note FSP, without NSA and any agency FSP will work
Key Responsibilities:
Facilitate the Assessment & Authorization (A&A) process for multiple security applications.
Utilize customer-specific tools for accreditations and security documentation.
Prepare system security plans, risk assessments, security standard operating procedures (SOPs), and contingency plans.
Work closely with customer accreditation staff to address security requirements and ensure compliance.
Perform security hardening for Windows and Linux systems, including ports, protocols, security groups, and patching.
Conduct technical briefings and Technical Exchange Meetings (TEMs) to communicate security-related information to non-technical stakeholders.
Develop security assessment criteria to ensure development teams comply with A&A requirements.
Provide high-level guidance on cloud solutions (Amazon Web Services) and security best practices.
Apply agile methodologies in security engineering workflows.
Use vulnerability scanning software to identify and mitigate system risks.
Implement Risk Mitigation Frameworks aligned with customer policies.
Ensure compliance with encryption standards and secure system communications.
Support the secure implementation of Software Development Life Cycle (SDLC) processes.
Note FSP, without NSA and any agency FSP will work
group id: 10290999
