Information Systems Security Engineer

Overview

Peregrine is a pioneer within the cybersecurity industrial control systems and the Internet of Things, supporting many federal and commercial customers. Peregrine's experienced staff knows the cybersecurity and operational technology environment and provides these capabilities for our customers daily.

Summary:

Peregrine is in search of a Information Systems Security Engineer (ISSE) to work remotely with about 50% travel requirements. The US Army Information Systems Engineering Command (USAISEC) mission is to provide Command, Control, Computers, Communications, Cyber-Defense (C5), Intelligence, Surveillance, and Reconnaissance (ISR) (C5ISR) Systems Engineering Support that enables the Mission Command of the Army and Joint Warfighter Worldwide. Services provided by USAISEC include engineering related activities in support of all aspects of information and communication systems. This includes planning, design, development, engineering, implementation, procurement, logistics, evaluation, test, sustainment, systems retirement, and ancillary services. Technical analysis, research, evaluation, and technical guidelines are to be performed in order to provide support. The workload will vary depending on the number of active development projects and other technical evaluations required.

Responsibilities

Essential Job Functions:

• Support all phases of an Information Systems Security Engineering (ISSE) Program with certified personnel to support the requirements of the DoD A&A Process. The ISSE Program will use the Information Assurance Technical Framework (IATF); DoD 5200.1-M; Common Criteria for IT Security Evaluation (International Organization for Standardization (ISO)/International Electro technical Commission (IEC) 15480; and DOD, Federal, and USAISEC Cyber Security Policies as guides.
• Provide input to the USAISEC A&A Process including Information Security planning, design, testing, and analysis.
• Provide research and analysis of Commercial-Off-The-Shelf (COTS) and Government-Off-The-Shelf (GOTS) and IA- enabled products as part of the security architecture and ensure that the products are National Security Telecommunications and Information Systems Security Policy Number 11 (NSTISSP-11) compliant and validated via the NIAP Common Criteria Evaluation and Validation Scheme or NIST Federal Information Processing Standards (FIPS) Cryptographic Module Validation Program (CMVP.)
• Support the development of long-range IT strategic plans.
• Support and maintain the USAISEC IT technical guidelines and framework.
• Assess the quality and viability of existing solution architectures and design integrity.
• Support the evaluation of technology products and develop trade studies when needed for potential addition of system functionality.
• Provide support in designing IT system architecture and IT solutions.
• Provide support in the development of executive orders and agency-wide policies.
• Provide support in requirements definition and validation.
• Analyze enterprise business models, IT solutions, trends, and emerging technologies.
• Provide support in the planning and designing of availability, capacity, and service continuity. •
• Develop and provide IT COTS/GOTS product analysis and testing processes in accordance with applicable DoD Policies. Information System Security Engineer (ISSE) Deliverables, at the discretion of the government, may include but are not limited to:
  • Service Acceptance Criteria and Service Level Requirements
  • Service Level Policies, Procedures, and Reports
  • Service Level Agreements and Operational Level Agreements
  • Availability Policy, Plans, Design Criteria, Risk -Analysis and Reports
  • Business and IT service continuity policy, strategy, plans, risks, business impact analysis, and reports
  • Technical Documents
  • Market Research Analysis and Results
  • Technical Guidelines and Framework
  • Technical and Product Evaluation Reports
  • Technical Studies
  • Cloud Design Diagram with security impacts (outlines systems to be deployed to a cloud infrastructure; outlines the ingress and egress points from the DCSA network to the cloud infrastructure, locations of the CND Suite, and method of connecting to the DoD information network (DoDIN))
  • Cloud Suitability Questionnaire Template-(will be used to score an application's suitability for deployment to the cloud with security impacts. The template should baseline a score to be used to determine suitability based on qualifying factors).
  • Technical Documents as defined by the Government
  • Courses of Action
  • Proofs of Concept

Qualifications

Necessary Skills and Knowledge:

• Familiar with IT Design, Installation, Integration with Cloud, FEDRAMP, and DoD Information Levels
• Familiar with DoD 8570.01-M/8140-M IASAE level III or DoD 8570.01-M/8140-M IAM III certification (CISSP-ISSAP, CISSP-ISSEP, CISSP (or Associate), CISM, CASP+)
• Proficiency in Microsoft Office Suite
• Solid client service, time management, and leadership skills, as well as written and verbal communication skills
• Must be able to work independently and be a self-starter
• Analytical and problem-solving skills
• Excellent interpersonal skills and a collaborative management style

Minimum Qualifications:

• Associate or bachelor's Degree, or equivalent experience at the discretion of the COR in Cyber Security and/or Information Systems Management
• At least five years of cybersecurity experience and knowledge of DoD, NIST, Cloud, DISA, and other applicable Cyber Security policies, procedures, and best practices
• Possess a current Active Secret Clearance or be eligible for an Interim Secret
• Pass an employer background check
• Must be a U.S. Citizen
• Requires up to 50% travel, both CONUS and OCONUS

Preferred Qualifications:

• Masters degree in Information Security or related field

Pay and Benefits

The salary range for this position is $60,000 - $90,000 annually.

At Goldbelt, we value and reward our team's dedication and hard work. We provide a competitive base salary commensurate with your qualifications and experience. As an employee, you'll enjoy a comprehensive benefits package, including medical, dental, and vision insurance, a 401(k) plan with company matching, tax-deferred savings options, supplementary benefits, paid time off, and professional development opportunities.