Posted today
Top Secret/SCI
Mid Level Career (5+ yrs experience)
Unspecified
No Traveling
CI Polygraph
IT - Security
Reston, VA (Off-Site/Hybrid)•Washington, DC (Off-Site/Hybrid)
We are seeking a highly skilled Information System Security Engineer (ISSE) to support mission-critical systems protecting national security interests. This role is ideal for a security professional who thrives in high-trust environments, enjoys deep technical work, and wants to be hands-on in strengthening system security across complex enterprise environments.
Location: DC Metro Area (Reston, VA & SW Washington, DC – Hybrid)
Clearance Required: Active CI Polygraph (required)
Experience: Splunk (preferred)
As an ISSE, you will serve as a key security authority responsible for continuous monitoring, vulnerability management, and security control implementation across multiple systems.
Core Responsibilities Include:
Security Operations & Continuous Monitoring
Review, document, and maintain Continuous Monitoring (CONMON) activities
Review and analyze audit logs weekly for each system
Identify trends, anomalies, and security findings; document results clearly
Leverage Splunk (preferred) for log analysis and security insights
Vulnerability Management
Track system vulnerabilities across multiple tools and platforms
Apply STIGs and implement mitigations
Assist with and perform SCAP scans
Apply and manage Nessus plugins and ensure proper scan configurations
Review and analyze:
Nessus scans
Enterprise ACAS scans
Mitigate findings and create Plans of Action & Milestones (POA&Ms) when required
Compliance & Risk Management
Review systems for IAVAs and IAVMs, ensuring proper mitigation and documentation
Provide input into Security Control Implementation and RMF artifacts
Review and approve software products, patches, and updates
Submit software packages for customer approval (CCB, SCRM, etc.)
Testing & Documentation
Review System Test Procedures with System Administrators to validate system functionality
Document procedures in System Test Plans for each system
Ensure security requirements are met throughout the system lifecycle
Governance & Collaboration
Attend and actively participate in Configuration Change Board (CCB) meetings
Support the creation, review, and validation of security requirements
Partner with technical teams to balance mission needs with security best practices
Required Qualifications
Active CI Polygraph clearance
Strong experience supporting classified systems in a federal environment
Hands-on experience with:
Vulnerability scanning and remediation
POA&M development and tracking
RMF / NIST security controls
Experience working with system administrators and engineers
Preferred Qualifications
Experience using Splunk for audit log analysis and security monitoring
Familiarity with:
Nessus / ACAS
STIGs and SCAP
CCB and SCRM processes
Location: DC Metro Area (Reston, VA & SW Washington, DC – Hybrid)
Clearance Required: Active CI Polygraph (required)
Experience: Splunk (preferred)
As an ISSE, you will serve as a key security authority responsible for continuous monitoring, vulnerability management, and security control implementation across multiple systems.
Core Responsibilities Include:
Security Operations & Continuous Monitoring
Review, document, and maintain Continuous Monitoring (CONMON) activities
Review and analyze audit logs weekly for each system
Identify trends, anomalies, and security findings; document results clearly
Leverage Splunk (preferred) for log analysis and security insights
Vulnerability Management
Track system vulnerabilities across multiple tools and platforms
Apply STIGs and implement mitigations
Assist with and perform SCAP scans
Apply and manage Nessus plugins and ensure proper scan configurations
Review and analyze:
Nessus scans
Enterprise ACAS scans
Mitigate findings and create Plans of Action & Milestones (POA&Ms) when required
Compliance & Risk Management
Review systems for IAVAs and IAVMs, ensuring proper mitigation and documentation
Provide input into Security Control Implementation and RMF artifacts
Review and approve software products, patches, and updates
Submit software packages for customer approval (CCB, SCRM, etc.)
Testing & Documentation
Review System Test Procedures with System Administrators to validate system functionality
Document procedures in System Test Plans for each system
Ensure security requirements are met throughout the system lifecycle
Governance & Collaboration
Attend and actively participate in Configuration Change Board (CCB) meetings
Support the creation, review, and validation of security requirements
Partner with technical teams to balance mission needs with security best practices
Required Qualifications
Active CI Polygraph clearance
Strong experience supporting classified systems in a federal environment
Hands-on experience with:
Vulnerability scanning and remediation
POA&M development and tracking
RMF / NIST security controls
Experience working with system administrators and engineers
Preferred Qualifications
Experience using Splunk for audit log analysis and security monitoring
Familiarity with:
Nessus / ACAS
STIGs and SCAP
CCB and SCRM processes
group id: 91009538
