Information System Security Engineer

MANTECH seeks a motivated, career and customer-oriented Senior Information System Security Engineer (ISSE) to join our team in Norfolk, VA. This is a hybrid position with 1-2 days onsite and 2-3 days remote.

As an ISSE, you will have the opportunity to work on innovative and mission-critical and national security projects. You will collaborate with a skilled team of professionals, responsible for developing accreditation packages for cloud systems in both AWS and Azure environments. This position offers great opportunities for technical growth and improved experience in Cyber Security.

Responsibilities include but are not limited to:

• Performing cyber security research under NAVSEA for cloud and network solutions
• Developing, defining, and aiding in implementing cyber security policies and processes
• Defining IS and Network Environment security requirements in accordance with applicable cybersecurity requirements
• Supporting A&A packages for multiple projects
• Applying security expertise to new modernization cyber solutions that provide confidentiality, integrity, availability, authentication, and non-repudiation for security policies and memorandum for records
• Developing Plan of Action and Milestones with proper Mitigations or Remediations, accordingly
• Developing approaches to mitigate IS and Cloud Network Environment vulnerabilities and recommend changes to network or network system components as needed
• Travel up to 25%

Minimum Qualifications:

• Bachelor's degree in Computer Science, Information Technology, Engineering, or a related technical field, and 8+ years of relevant experience
• 5+ years developing secure solutions for incident response, business continuity, and disaster recovery
• 3+ years implementing security controls and policies with emerging cybersecurity technologies, including access control, privileged access management, data security, network security, data loss prevention, cloud security, vulnerability management, configuration management, privacy, and audits
• Must have an active Security+ certification
• Must be familiar with the use and operation of security tools including STIG Viewer, eMASSter, and Tenable Nessus and/or Security Center
• Experience with cloud brokerages, preferably Navy
• Knowledge and experience working with federal compliance and guidance, including FISMA, RMF, Federal Enterprise Architecture Framework, DoDAF, NIST Cybersecurity Framework, NIST 800 series, FedRAMP and cloud-based security controls

Preferred Qualifications:

• Master's degree
• One of the following certifications: Certified Information Systems Security Professional (CISSP), CompTIA Advanced Security Practitioner (CASP) CE, Certified Secure Software Lifecycle Professional (CSSLP), CISSP- Information System Security Engineering Professional (ISSEP), or CISSP- Information System Security Architecture Professional (ISSAP) or an equivalent security certification

Clearance Requirements:

• Must have an active Secret security clearance.

Physical Requirements:

• The person in this position must be able to remain in a stationary position 50% of the time.
• Must be able to move around the office and operate office equipment.
• Frequently communicate with co-workers, management, and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.