Job Requirements
Chantilly, VA
Top Secret Polygraph not specified
Senior Level Career (10+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Overview
NDi is seeking an experienced Information Systems Security Engineer (ISSE) – Senior to support enterprise cybersecurity engineering, authorization, compliance, and security operations activities within a complex federal environment supporting Cybersecurity Division (CyD) mission requirements.
The ISSE will support the secure design, implementation, assessment, and continuous monitoring of information systems and security controls across enterprise environments. This role will work closely with system owners, ISSOs, cybersecurity teams, engineers, and government stakeholders to ensure systems maintain compliance with federal cybersecurity requirements and security best practices.
The ideal candidate will possess strong technical expertise in security engineering, RMF implementation, vulnerability remediation, audit readiness, and secure system design within large-scale operational environments.
Requirements
U.S. Citizenship is required
Must possess an active Top Secret (TS) clearance at the time of application
Must have the ability to obtain and maintain a Counterintelligence (CI) Polygraph
Ability to obtain and maintain additional agency access as required
This position requires onsite support in Chantilly, VA
Qualifications & Experience
Education
Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, Engineering, or related technical discipline; or equivalent combination of education, training, and experience
Master’s degree preferred
Certifications
Required
Certified Information Systems Security Professional (CISSP) or
Certified Ethical Hacker (CEH)
Professional Experience
Eight (8) or more years of experience:
supporting information assurance, cybersecurity engineering, or enterprise security operations
in secure design/analysis/testing
applying security methods/standards
creating/updating security test plans
Experience supporting federal cybersecurity and information assurance programs
Demonstrated experience implementing and supporting NIST RMF processes and security authorization activities
Experience supporting system hardening, vulnerability remediation, and continuous monitoring activities
Experience developing and maintaining cybersecurity documentation and security artifacts
Experience supporting enterprise-scale Windows, Linux, cloud, and hybrid environments
Experience supporting security engineering activities within mission-critical environments
Certifications, prior experience, and demonstrated expertise may be considered in lieu of traditional years of experience requirements where applicable.
Domain Expertise
Strong understanding of:
NIST Risk Management Framework (RMF)
FISMA compliance requirements
Security authorization / ATO processes
Continuous monitoring
Vulnerability management
Security control implementation and assessment
POA&M development and remediation tracking
Experience supporting:
System Security Plans (SSPs)
Security assessment activities
Audit readiness initiatives
Security test plans and procedures
Risk assessments and mitigation planning
Familiarity with enterprise cybersecurity tools and technologies including:
ACAS/Nessus
Splunk
SIEM platforms
Endpoint security tools
Cloud security platforms
Identity and access management solutions
Skills & Competencies
Strong analytical and troubleshooting skills
Ability to identify, assess, and mitigate cybersecurity risks
Strong written and verbal communication skills
Ability to collaborate across technical and operational teams
Experience supporting audits, inspections, and compliance reviews
Ability to manage multiple priorities in high-visibility environments
Strong documentation and reporting capabilities
Ability to work independently and as part of an integrated cybersecurity team
Responsibilities
Security Engineering & RMF Support
Support implementation and maintenance of security controls across enterprise information systems
Assist with security authorization and accreditation activities in accordance with RMF requirements
Develop, review, and maintain cybersecurity documentation including:
System Security Plans (SSPs)
Security Control Traceability Matrices (SCTMs)
POA&Ms
Security assessment documentation
Risk assessments
Support system boundary analysis and security architecture reviews
Vulnerability & Compliance Management
Perform vulnerability analysis, remediation coordination, and risk tracking activities
Support continuous monitoring efforts and security compliance initiatives
Validate remediation actions and document mitigation strategies
Coordinate with technical teams to resolve cybersecurity findings and deficiencies
Support internal and external audits, assessments, and inspections
Security Operations Support
Collaborate with ISSOs, system administrators, engineers, and security teams to maintain secure system operations
Support implementation of security baselines, hardening standards, and secure configurations
Assist with incident response support and security investigations as required
Evaluate security impacts of system changes and new technologies
Reporting & Stakeholder Engagement
Provide technical recommendations and cybersecurity guidance to leadership and stakeholders
Develop status reports, risk summaries, and compliance metrics
Participate in technical meetings, working groups, and operational reviews
Support continuous process improvement and cybersecurity modernization initiatives
Preferred Qualifications
Experience supporting Cybersecurity Division (CyD) operations or enterprise federal cybersecurity programs
Experience supporting cloud security initiatives within AWS and Azure environments
Familiarity with Zero Trust architecture principles
Experience supporting classified or highly regulated environments
Experience with enterprise vulnerability management programs
Familiarity with DevSecOps and modern cybersecurity engineering practices
NDi is seeking an experienced Information Systems Security Engineer (ISSE) – Senior to support enterprise cybersecurity engineering, authorization, compliance, and security operations activities within a complex federal environment supporting Cybersecurity Division (CyD) mission requirements.
The ISSE will support the secure design, implementation, assessment, and continuous monitoring of information systems and security controls across enterprise environments. This role will work closely with system owners, ISSOs, cybersecurity teams, engineers, and government stakeholders to ensure systems maintain compliance with federal cybersecurity requirements and security best practices.
The ideal candidate will possess strong technical expertise in security engineering, RMF implementation, vulnerability remediation, audit readiness, and secure system design within large-scale operational environments.
Requirements
U.S. Citizenship is required
Must possess an active Top Secret (TS) clearance at the time of application
Must have the ability to obtain and maintain a Counterintelligence (CI) Polygraph
Ability to obtain and maintain additional agency access as required
This position requires onsite support in Chantilly, VA
Qualifications & Experience
Education
Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, Engineering, or related technical discipline; or equivalent combination of education, training, and experience
Master’s degree preferred
Certifications
Required
Certified Information Systems Security Professional (CISSP) or
Certified Ethical Hacker (CEH)
Professional Experience
Eight (8) or more years of experience:
supporting information assurance, cybersecurity engineering, or enterprise security operations
in secure design/analysis/testing
applying security methods/standards
creating/updating security test plans
Experience supporting federal cybersecurity and information assurance programs
Demonstrated experience implementing and supporting NIST RMF processes and security authorization activities
Experience supporting system hardening, vulnerability remediation, and continuous monitoring activities
Experience developing and maintaining cybersecurity documentation and security artifacts
Experience supporting enterprise-scale Windows, Linux, cloud, and hybrid environments
Experience supporting security engineering activities within mission-critical environments
Certifications, prior experience, and demonstrated expertise may be considered in lieu of traditional years of experience requirements where applicable.
Domain Expertise
Strong understanding of:
NIST Risk Management Framework (RMF)
FISMA compliance requirements
Security authorization / ATO processes
Continuous monitoring
Vulnerability management
Security control implementation and assessment
POA&M development and remediation tracking
Experience supporting:
System Security Plans (SSPs)
Security assessment activities
Audit readiness initiatives
Security test plans and procedures
Risk assessments and mitigation planning
Familiarity with enterprise cybersecurity tools and technologies including:
ACAS/Nessus
Splunk
SIEM platforms
Endpoint security tools
Cloud security platforms
Identity and access management solutions
Skills & Competencies
Strong analytical and troubleshooting skills
Ability to identify, assess, and mitigate cybersecurity risks
Strong written and verbal communication skills
Ability to collaborate across technical and operational teams
Experience supporting audits, inspections, and compliance reviews
Ability to manage multiple priorities in high-visibility environments
Strong documentation and reporting capabilities
Ability to work independently and as part of an integrated cybersecurity team
Responsibilities
Security Engineering & RMF Support
Support implementation and maintenance of security controls across enterprise information systems
Assist with security authorization and accreditation activities in accordance with RMF requirements
Develop, review, and maintain cybersecurity documentation including:
System Security Plans (SSPs)
Security Control Traceability Matrices (SCTMs)
POA&Ms
Security assessment documentation
Risk assessments
Support system boundary analysis and security architecture reviews
Vulnerability & Compliance Management
Perform vulnerability analysis, remediation coordination, and risk tracking activities
Support continuous monitoring efforts and security compliance initiatives
Validate remediation actions and document mitigation strategies
Coordinate with technical teams to resolve cybersecurity findings and deficiencies
Support internal and external audits, assessments, and inspections
Security Operations Support
Collaborate with ISSOs, system administrators, engineers, and security teams to maintain secure system operations
Support implementation of security baselines, hardening standards, and secure configurations
Assist with incident response support and security investigations as required
Evaluate security impacts of system changes and new technologies
Reporting & Stakeholder Engagement
Provide technical recommendations and cybersecurity guidance to leadership and stakeholders
Develop status reports, risk summaries, and compliance metrics
Participate in technical meetings, working groups, and operational reviews
Support continuous process improvement and cybersecurity modernization initiatives
Preferred Qualifications
Experience supporting Cybersecurity Division (CyD) operations or enterprise federal cybersecurity programs
Experience supporting cloud security initiatives within AWS and Azure environments
Familiarity with Zero Trust architecture principles
Experience supporting classified or highly regulated environments
Experience with enterprise vulnerability management programs
Familiarity with DevSecOps and modern cybersecurity engineering practices
group id: 10268248