Posted today
Top Secret
Senior Level Career (10+ yrs experience)
$160,000 - $170,000
IT - Security
Washington, DC (On-Site/Office)
Location: Washington, D.C.
Job Type: Full Time
Clearance Level: Top Secret
PID: 26-02-09-005
Job Summary:
E-INFOSOL LLC is seeking a highly motivated Information Systems Security Engineer to be a Full-time employee in Washington, DC. The Information Systems Security Engineer (ISSE) is responsible for designing, implementing, and maintaining security measures to protect an organization's information systems and data assets from cybersecurity threats and vulnerabilities. Work closely with IT teams, management, and other stakeholders to ensure the confidentiality, integrity, and availability of sensitive information and critical infrastructure.
Key Responsibilities:
Security Architecture Design: Develop and implement secure information systems architectures, including networks, applications, databases, and cloud environments, to protect against cybersecurity threats and risks.
Risk Assessment and Management: Conduct risk assessments to identify vulnerabilities, assess threats, and develop risk mitigation strategies to minimize security risks and ensure the security posture of information systems.
Security Tool Implementation and Management: Deploy and manage security tools and technologies, such as firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus software, SIEM (Security Information and Event Management) systems, and encryption tools, to detect and prevent security incidents.
Incident Response and Management: Develop and implement incident response plans and procedures to effectively respond to security incidents and breaches, including detection, analysis, containment, eradication, and recovery.
Security Testing and Evaluation: Perform security testing, including penetration testing, vulnerability assessment, code review, and security audits, to identify and remediate security vulnerabilities in information systems.
Identity and Access Management (IAM): Design and implement IAM solutions, including user authentication, authorization, provisioning, de-provisioning, single sign-on (SSO), and privilege management, to ensure appropriate access control and user management.
Security Compliance and Standards: Ensure organizational compliance with regulatory requirements and industry standards (e.g., GDPR, HIPAA, PCI DSS, ISO 27001) through regular assessments, audits, and adherence to security policies and procedures.
Secure Configuration Management: Implement and maintain secure configurations for operating systems, applications, network devices, and cloud services to minimize security risks and vulnerabilities.
Security Awareness and Training: Provide security awareness training to employees to promote a culture of security and compliance and keep stakeholders informed about emerging threats and security best practices.
Collaboration and Communication: Collaborate with cross-functional teams, including IT, security, compliance, and business units, to address security concerns, communicate security risks, and provide security guidance to stakeholders.
Education and Experience:
Bachelor's Degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required
10+ years of IT related experience
Experience with modern networks, operating systems, databases, and virtual computing (Bash, Linux, or UNIX)
Expert technical knowledge in security engineering and IT systems engineering.
Experience with SAML
Development Software use (Oracle Java, Perl, and Python)
Experience with SQL
Experience with AWS
Experience with applying and managing baseline policy guidance from federal partners (eg. DISA)
Experience with Windows Update System Server (WSUS) or System Center Configuration Manager (SCCM), and other systems as necessary to retain Authority to Operate (ATO) or manage policy updates
Skilled in management and implementation of enterprise systems and cybersecurity policy while meeting organizational system deployment standards, cybersecurity initiatives, and regulatory compliance
Exceptional knowledge in applying advanced System Management and Cybersecurity policies
Possesses a thorough working knowledge of Incident Response principles, systems administration techniques, and has a broad understanding of industry standards, and best practices
Ability to cope with fast- paced, dynamic work environment where areas of responsibility are broad and encompass multiple technologies.
Skill in establishing and implementing policy needed to govern IT activities. Drive strategic evolution of technology and policy for the management of IT systems provided by the Commission for internal and external business partners
Preferred Qualifications / Certifications:
Certified Information Systems Security Professional (CISSP)
Deep understanding of information security principles, concepts, and best practices.
Ability to conduct comprehensive risk assessments, identify vulnerabilities, assess threats, and develop risk mitigation strategies.
Proficiency in designing secure and resilient information systems architectures, including networks, applications, databases, and cloud environments.
Researched and evaluated emerging security trends and issues to assist customers in improving the security posture of the organization.
Understanding of cloud security concepts, architectures, and best practices, including identity and access management, data encryption, and secure configuration management in cloud environments.
Researched web application firewall(WAF) technology limitations and advised development teams on remediation of vulnerabilities not covered by WAF security policies.
Experience in designing and implementing Identity and Access Management (IAM) solutions, including user authentication, authorization, and privilege management.
Knowledge of encryption algorithms, cryptographic protocols, and key management principles to protect data at rest, in transit, and in use.
Proficiency in security testing methodologies, including penetration testing, vulnerability assessment, code review, and security audits.
Ability to develop and implement incident response plans and procedures, including detection, analysis, containment, eradication, and recovery from security incidents.
A deep understanding of enterprise operating systems.
Knowledge of programming languages and tools
About E-INFOSOL
E-INFOSOL is a Service Disabled and Veteran Owned Small Business (SDVOSB) located in the Washington, D.C. metropolitan area. We specialize in building modern and tailored solutions to support our customers’ mission. As a mission-first organization, we deliver Subject Matter Expertise (SME) in cloud computing, virtualization, cyber security, software development and data services. We support the Intelligence Community, Department of Defense, Federal Law Enforcement, Civilian Agencies and the Private Sector.
Through strategic partnerships with top industry players such as Amazon Web Services (AWS), VMware, Microsoft and Nutanix, E-INFOSOL provide an array of IT products and solutions. Combined with our industry expertise, we deliver in-depth knowledge on Government requirements and fully understand NIST and DoD security requirements. Our expertise in the latest technologies combined with our understanding of infrastructure needs and security requirements provides the best combination for achieving innovative and secure environments for Government Agencies and Private Sector.
Career Growth
“Putting People First, Achieving our Mission Together”. E-INFOSOL is a people-first organization focusing on a positive employee culture that inspires creativity and innovation in support of our customers. With opportunities such as reimbursement and bonuses based on completion of certifications, we invest in our employees’ career growth.
Full Time Benefits
Medical – 100% company paid for employees with dependent options
Dental and Vision
Retirement Savings (401k) up to 4% match
Health Savings Account (HSA), FSA and DCFSA
Company-paid Short/Long-term disability (w/ additional supplemental options)
Company-paid Life and AD&D (w/ additional supplemental options)
Generous Paid Time Off and ALL 11 Federal Holidays
Legal and Identity Protection Services
Bonuses for certifications and reimbursement
Employee Perks:
UberOne, Company Outings (Sporting events, Happy Hours, etc.), Discounts on services including Pet Insurance
Company Awards:
SBA 8(a) Certified
SDVOSB
GSA Contract Holder
Inc. 5000
Equal Employment Opportunity Policy
E-INFOSOL LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
Website: E-INFOSOL.com
Job Type: Full Time
Clearance Level: Top Secret
PID: 26-02-09-005
Job Summary:
E-INFOSOL LLC is seeking a highly motivated Information Systems Security Engineer to be a Full-time employee in Washington, DC. The Information Systems Security Engineer (ISSE) is responsible for designing, implementing, and maintaining security measures to protect an organization's information systems and data assets from cybersecurity threats and vulnerabilities. Work closely with IT teams, management, and other stakeholders to ensure the confidentiality, integrity, and availability of sensitive information and critical infrastructure.
Key Responsibilities:
Security Architecture Design: Develop and implement secure information systems architectures, including networks, applications, databases, and cloud environments, to protect against cybersecurity threats and risks.
Risk Assessment and Management: Conduct risk assessments to identify vulnerabilities, assess threats, and develop risk mitigation strategies to minimize security risks and ensure the security posture of information systems.
Security Tool Implementation and Management: Deploy and manage security tools and technologies, such as firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus software, SIEM (Security Information and Event Management) systems, and encryption tools, to detect and prevent security incidents.
Incident Response and Management: Develop and implement incident response plans and procedures to effectively respond to security incidents and breaches, including detection, analysis, containment, eradication, and recovery.
Security Testing and Evaluation: Perform security testing, including penetration testing, vulnerability assessment, code review, and security audits, to identify and remediate security vulnerabilities in information systems.
Identity and Access Management (IAM): Design and implement IAM solutions, including user authentication, authorization, provisioning, de-provisioning, single sign-on (SSO), and privilege management, to ensure appropriate access control and user management.
Security Compliance and Standards: Ensure organizational compliance with regulatory requirements and industry standards (e.g., GDPR, HIPAA, PCI DSS, ISO 27001) through regular assessments, audits, and adherence to security policies and procedures.
Secure Configuration Management: Implement and maintain secure configurations for operating systems, applications, network devices, and cloud services to minimize security risks and vulnerabilities.
Security Awareness and Training: Provide security awareness training to employees to promote a culture of security and compliance and keep stakeholders informed about emerging threats and security best practices.
Collaboration and Communication: Collaborate with cross-functional teams, including IT, security, compliance, and business units, to address security concerns, communicate security risks, and provide security guidance to stakeholders.
Education and Experience:
Bachelor's Degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required
10+ years of IT related experience
Experience with modern networks, operating systems, databases, and virtual computing (Bash, Linux, or UNIX)
Expert technical knowledge in security engineering and IT systems engineering.
Experience with SAML
Development Software use (Oracle Java, Perl, and Python)
Experience with SQL
Experience with AWS
Experience with applying and managing baseline policy guidance from federal partners (eg. DISA)
Experience with Windows Update System Server (WSUS) or System Center Configuration Manager (SCCM), and other systems as necessary to retain Authority to Operate (ATO) or manage policy updates
Skilled in management and implementation of enterprise systems and cybersecurity policy while meeting organizational system deployment standards, cybersecurity initiatives, and regulatory compliance
Exceptional knowledge in applying advanced System Management and Cybersecurity policies
Possesses a thorough working knowledge of Incident Response principles, systems administration techniques, and has a broad understanding of industry standards, and best practices
Ability to cope with fast- paced, dynamic work environment where areas of responsibility are broad and encompass multiple technologies.
Skill in establishing and implementing policy needed to govern IT activities. Drive strategic evolution of technology and policy for the management of IT systems provided by the Commission for internal and external business partners
Preferred Qualifications / Certifications:
Certified Information Systems Security Professional (CISSP)
Deep understanding of information security principles, concepts, and best practices.
Ability to conduct comprehensive risk assessments, identify vulnerabilities, assess threats, and develop risk mitigation strategies.
Proficiency in designing secure and resilient information systems architectures, including networks, applications, databases, and cloud environments.
Researched and evaluated emerging security trends and issues to assist customers in improving the security posture of the organization.
Understanding of cloud security concepts, architectures, and best practices, including identity and access management, data encryption, and secure configuration management in cloud environments.
Researched web application firewall(WAF) technology limitations and advised development teams on remediation of vulnerabilities not covered by WAF security policies.
Experience in designing and implementing Identity and Access Management (IAM) solutions, including user authentication, authorization, and privilege management.
Knowledge of encryption algorithms, cryptographic protocols, and key management principles to protect data at rest, in transit, and in use.
Proficiency in security testing methodologies, including penetration testing, vulnerability assessment, code review, and security audits.
Ability to develop and implement incident response plans and procedures, including detection, analysis, containment, eradication, and recovery from security incidents.
A deep understanding of enterprise operating systems.
Knowledge of programming languages and tools
About E-INFOSOL
E-INFOSOL is a Service Disabled and Veteran Owned Small Business (SDVOSB) located in the Washington, D.C. metropolitan area. We specialize in building modern and tailored solutions to support our customers’ mission. As a mission-first organization, we deliver Subject Matter Expertise (SME) in cloud computing, virtualization, cyber security, software development and data services. We support the Intelligence Community, Department of Defense, Federal Law Enforcement, Civilian Agencies and the Private Sector.
Through strategic partnerships with top industry players such as Amazon Web Services (AWS), VMware, Microsoft and Nutanix, E-INFOSOL provide an array of IT products and solutions. Combined with our industry expertise, we deliver in-depth knowledge on Government requirements and fully understand NIST and DoD security requirements. Our expertise in the latest technologies combined with our understanding of infrastructure needs and security requirements provides the best combination for achieving innovative and secure environments for Government Agencies and Private Sector.
Career Growth
“Putting People First, Achieving our Mission Together”. E-INFOSOL is a people-first organization focusing on a positive employee culture that inspires creativity and innovation in support of our customers. With opportunities such as reimbursement and bonuses based on completion of certifications, we invest in our employees’ career growth.
Full Time Benefits
Medical – 100% company paid for employees with dependent options
Dental and Vision
Retirement Savings (401k) up to 4% match
Health Savings Account (HSA), FSA and DCFSA
Company-paid Short/Long-term disability (w/ additional supplemental options)
Company-paid Life and AD&D (w/ additional supplemental options)
Generous Paid Time Off and ALL 11 Federal Holidays
Legal and Identity Protection Services
Bonuses for certifications and reimbursement
Employee Perks:
UberOne, Company Outings (Sporting events, Happy Hours, etc.), Discounts on services including Pet Insurance
Company Awards:
SBA 8(a) Certified
SDVOSB
GSA Contract Holder
Inc. 5000
Equal Employment Opportunity Policy
E-INFOSOL LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
Website: E-INFOSOL.com
group id: 91078776
