Information Systems Security Engineer - ISSE 25-24515

Overview

Remote
Depends on Experience
Accepts corp to corp applications
Contract - Independent
Contract - W2
No Travel Required

Skills

System Security
User Guides
Risk Management Framework
Security Engineering
Standard Operating Procedure
Microsoft Azure
RMF
Regulatory Compliance
Reporting
Writing
Information Systems
Information Technology
Leadership
Management
Network Design
Communication
Continuous Monitoring
Cyber Security
Documentation
ISSE
Amazon Web Services
Authorization
CISSP
Cloud Security
Collaboration
ICD

Job Details

Job Title: Information Systems Security Engineer (ISSE)
Location: Remote
Duration: 12 Months (Contract)

Position Summary:

We are seeking an experienced Information Systems Security Engineer (ISSE) to support multiple projects in a dynamic, security-focused environment. This role involves end-to-end security engineering for systems undergoing Assessment & Authorization (A&A) under the Risk Management Framework (RMF). The ideal candidate will have strong technical and communication skills, a deep understanding of federal security standards, and the ability to translate complex engineering concepts into clear, actionable documentation for stakeholders at all levels.

Key Responsibilities:

  • Support multiple concurrent systems and projects undergoing A&A activities.

  • Interpret and translate engineering concepts into security requirements and documentation.

  • Work across technical and non-technical teams to gather artifacts for RMF and ICD 503 compliance.

  • Develop and maintain security documentation, including:

    • System Security Plans (SSPs)

    • Concept of Operations (CONOPS)

    • Contingency Plans (CP)

    • User Guides (GUG/PUG)

    • Standard Operating Procedures (SOPs)

    • Plans of Actions and Milestones (POA&Ms)

  • Coordinate with engineering teams, system owners, and project managers to ensure accurate and timely documentation.

  • Engage with customer security teams to facilitate Authority to Develop (ATD), Interim Authority to Test (IATT), and Authority to Operate (ATO) processes.

  • Support systems post-ATO through continuous monitoring and compliance reporting.

  • Ensure documentation and evidence gathering align with government and customer security requirements.

Required Qualifications:

  • 8+ years of experience in Information Systems Security Engineering or a related field.

  • Bachelor's degree in Information Technology, Cybersecurity, or a related discipline.

  • Hands-on experience with RMF, ICD 503, and A&A processes.

  • Expertise in cloud security for public, private, and hybrid environments specifically AWS and/or Microsoft Azure.

  • Familiarity with secure network architecture involving shared and multi-enclave environments.

  • Strong written and verbal communication skills; ability to convey technical topics in non-technical language.

  • Proven experience writing and managing security documentation for government or enterprise-level systems.

  • Comfortable working independently and collaboratively with geographically distributed teams.

Required Certification (at least one of the following):

  • CISSP Certified Information Systems Security Professional

  • GSLC GIAC Security Leadership Certification

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.