Yesterday
Secret
Mid Level Career (5+ yrs experience)
Unspecified
IT - Security
Philadelphia, PA (On-Site/Office)
SDA Solutions is seeking a Information System Security Engineer (ISSE) III to support the implementation and maintenance of Risk Management Framework (RMF) processes for assigned systems in compliance with DoD, DON, and federal cybersecurity standards. This position is responsible for system accreditation, continuous monitoring, vulnerability management, and configuration control to ensure compliance and secure operation of IT systems and networks.
Primary Responsibilities:
Assist with developing, maintaining, and tracking RMF system security plans, including System Categorization Forms, Platform IT (PIT) Determination Checklists, Assess Only (AO) Checklists, Implementation Plans, System-Level Continuous Monitoring (SLCM) Strategies, System Policies, Hardware/Software Lists, System Diagrams, Privacy Impact Assessments (PIA), and Plans of Action and Milestones (POA&M).
Execute RMF processes to obtain and maintain Interim Authority to Test (IATT), Authorization to Operate (ATO), and manage Denial of Authorization to Operate (DATO) actions.
Identify and tailor IT and Cybersecurity (CS) control baselines per RMF guidelines and boundary categorizations.
Perform Ports, Protocols, and Services Management (PPSM) and IT/CS vulnerability-level risk assessments.
Execute security control testing as required by annual security reviews (ASR) or risk assessments.
Mitigate and remediate IT/CS vulnerabilities for assets within boundary per STIG requirements.
Develop and maintain POA&Ms in Enterprise Mission Assurance Support Service (eMASS).
Develop and maintain IT and CS policies/procedures in alignment with command ISSM guidance.
Implement and assess Security Technical Implementation Guides (STIGs) and Security Requirement Guides (SRGs).
Conduct vulnerability assessments using automated tools such as ACAS, SCC, and Evaluate STIG.
Deploy security updates and patches to system components.
Perform routine audits of IT hardware/software and maintain system inventory.
Support configuration and change management documentation, ensuring DOD STIG compliance.
Upload vulnerability data into Vulnerability Remediation Asset Manager (VRAM).
Image or re-image assets within the RMF boundary as required.
Install and troubleshoot software to support RMF compliance.
Support removal and destruction of critical components (SSD/HDD) prior to asset disposal.
Provide cybersecurity patching of assets in response to DoD/DoN TASKORDs and FRAGORDs.
Support cyber compliance for enterprise IT network assets (Windows servers, Cisco hardware).
Report compliance issues and vulnerabilities to management to prevent operational impact.
Required Education and Experience:
Education: Bachelor’s degree in Computer Science, Information Technology, or a related STEM discipline from an accredited institution.
Experience: Minimum of seven (7) years of professional experience in information security engineering, including capturing and refining security requirements, implementing security controls, vulnerability scanning, patching, and system hardening.
Required Certifications (One or More):
CASP+ CE
CCNP Security
CISA
CISSP (or Associate)
GCED
GCIH
CCSP
Preferred Qualifications:
Experience with eMASS, ACAS, VRAM, and SCC tools.
Strong knowledge of RMF processes, DISA STIGs, and DoD cybersecurity policies.
Excellent analytical, organizational, and communication skills.
Ability to work independently and collaboratively with government and contractor stakeholders.
Primary Responsibilities:
Assist with developing, maintaining, and tracking RMF system security plans, including System Categorization Forms, Platform IT (PIT) Determination Checklists, Assess Only (AO) Checklists, Implementation Plans, System-Level Continuous Monitoring (SLCM) Strategies, System Policies, Hardware/Software Lists, System Diagrams, Privacy Impact Assessments (PIA), and Plans of Action and Milestones (POA&M).
Execute RMF processes to obtain and maintain Interim Authority to Test (IATT), Authorization to Operate (ATO), and manage Denial of Authorization to Operate (DATO) actions.
Identify and tailor IT and Cybersecurity (CS) control baselines per RMF guidelines and boundary categorizations.
Perform Ports, Protocols, and Services Management (PPSM) and IT/CS vulnerability-level risk assessments.
Execute security control testing as required by annual security reviews (ASR) or risk assessments.
Mitigate and remediate IT/CS vulnerabilities for assets within boundary per STIG requirements.
Develop and maintain POA&Ms in Enterprise Mission Assurance Support Service (eMASS).
Develop and maintain IT and CS policies/procedures in alignment with command ISSM guidance.
Implement and assess Security Technical Implementation Guides (STIGs) and Security Requirement Guides (SRGs).
Conduct vulnerability assessments using automated tools such as ACAS, SCC, and Evaluate STIG.
Deploy security updates and patches to system components.
Perform routine audits of IT hardware/software and maintain system inventory.
Support configuration and change management documentation, ensuring DOD STIG compliance.
Upload vulnerability data into Vulnerability Remediation Asset Manager (VRAM).
Image or re-image assets within the RMF boundary as required.
Install and troubleshoot software to support RMF compliance.
Support removal and destruction of critical components (SSD/HDD) prior to asset disposal.
Provide cybersecurity patching of assets in response to DoD/DoN TASKORDs and FRAGORDs.
Support cyber compliance for enterprise IT network assets (Windows servers, Cisco hardware).
Report compliance issues and vulnerabilities to management to prevent operational impact.
Required Education and Experience:
Education: Bachelor’s degree in Computer Science, Information Technology, or a related STEM discipline from an accredited institution.
Experience: Minimum of seven (7) years of professional experience in information security engineering, including capturing and refining security requirements, implementing security controls, vulnerability scanning, patching, and system hardening.
Required Certifications (One or More):
CASP+ CE
CCNP Security
CISA
CISSP (or Associate)
GCED
GCIH
CCSP
Preferred Qualifications:
Experience with eMASS, ACAS, VRAM, and SCC tools.
Strong knowledge of RMF processes, DISA STIGs, and DoD cybersecurity policies.
Excellent analytical, organizational, and communication skills.
Ability to work independently and collaboratively with government and contractor stakeholders.
group id: 91012390
