Senior Information Systems Security Engineer (ISSE) L4

ABOUT PRISM
PRISM is devoted to modernization and innovation within the world of technology, security, and IT enterprise solutions. We are recognized for meeting performance requirements and exceeding customer expectations since 1994. Our culture is founded on relationships, opportunity, and success. Offering comprehensive benefit plans including medical, dental, vision, and 401K along with our people - first approach sustains our reputation as a premier employer.

PRISM is seeking a Senior Information System Security Engineer (ISSE) to provide expert engineering support for mission-critical, hyperscale environments in Lorton, VA. The ideal candidate will have 8 to 12 years of experience in cybersecurity, including deep, "day-one" proficiency in ePO, Splunk, and ACAS. You will be responsible for building secure systems from the ground up, architecting innovative defensive solutions, and automating threat assessments and compliance reporting. Key technical requirements include advanced knowledge of Active Directory, Azure security services, STIG/SCAP hardening, and SQL Server security, all mapped to NIST and RMF frameworks.

KEY RESPONSIBILITIES:

• Perform and review technical security assessments of computing environments to identify vulnerabilities, compliance gaps, and recommend mitigations.
• Architect and engineer innovative solutions to support ongoing Cyber Threat and Defensive Operations.
• Provide functional expertise and technical recommendations to ISSOs, ISSEs, and ISSMs.
• Automate threat assessment, posture reporting, and system monitoring activities.
• Analyze system and organizational security posture trends and report findings to the ISSM/ISSO.
• Recommend cybersecurity measures based on significant threats and vulnerabilities.
• Implement security controls in alignment with confidentiality, integrity, availability, authentication, and non-repudiation principles.
• Develop and recommend modifications based on exercise or test results.
• Mitigate or recommend acceptance of identified risks and deficiencies during certification, testing, or operational reviews.

REQUIRED QUALIFICATIONS: (SKILLS/EDUCATION):

• Bachelor's degree in Computer Science, Engineering, or related field and 3+ years of leadership experience.
• 8-12 years of demonstrated performance in related technology areas.
• Certification: IAT/IAM/IASAE Level III (DoD 8570 compliant).
• Must be willing to work onsite (5 days a week)
• Technical Expertise: Advanced Skills in ALL of the following areas :

- Active Directory (AD DS, ADFS, AD CS, WSUS)
- ePO, Splunk, STIG/SCAP, YUM, ACAS automation
- Azure VPN Gateways, Azure Monitor/Log Analytics
- SAP systems security
- GPOs
- SQL Server STIG hardening

• Must have proven, day-one depth of knowledge across ePO, ACAS, and Splunk
• Must be able to build systems from scratch
• Must have troubleshooting experience with the deployment and maintenance
• Must have understanding of how the tools are different when they move to hyperscale
• Must be able to lead, guide and mentor the other Information System Security Engineers
• Must have Network compliance regulations knowledge
• Must have experience with Compliance & Frameworks (NIST, JSIG/RMF, SCTM)
• Must have experience with Hyperscale, Architecture and Integration
• Must have Automation & Reporting experience.

REQUIRED SECURITY CLEARANCE:

• Active Top Secret/SCI

PRISM is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.