Information Systems Security Engineer (ISSE)

Job Description

ECS is seeking an Information Systems Security Engineer (ISSE) to work in our Fairfax, VA office. (Situational telework eligible) Please Note: This position is contingent upon additional funding.

Specific responsibilities include but are not limited to:

• Provide expertise and recommendations in applying security requirements to complex combatant command projects, identifying gaps, and while integrating new technologies.
• Develop secure system architectures and hardening solutions.
• Conduct vulnerability assessments, security testing, and continuous monitoring.
• Implement security controls per RMF and NIST guidelines.
• Support risk assessments and incident response efforts.
• Ensure security policies and best practices are integrated into system design.
• Develop strategies to address potential solutions to complex problems.
• Develop and document requirements from project inception to conclusion.
• Provide strategic advice, technical guidance, and expertise to program and project staff.
• Apply security controls and all technical mechanisms required by DoD RMF/Joint Special Access Program Implementation Guide (JSIG)/and Intelligence Community (IC) Directives and building security assessment procedures and evidence for assessment by Authorizing Officials of body of evidence.
• Engineering, administration, and configuration of Nessus scans and policies, Trellix/McAfee back end and policies, Splunk and Elastic SIEM administration, engineering, and query languages (SPL, SQL, or ES/QL) for analysis.
• Apply STIGs, and various security mechanisms within Windows, Linux, and AWS cloud consoles.
• Identify and analyze information system vulnerabilities and compliance issues.
• Administration of AWS cloud console and cybersecurity mechanisms, and STIG/SCAP compliance checker.
• Execute incident response as necessary
• Provide detailed analysis, evaluation, and recommendations for improvements, optimization, and/or maintenance efforts for specified mission-critical challenges/issues as related to system vulnerabilities and remediation.
• Coordinate cross-functional teams through meetings and progress measuring activities.
• Participate in project performance review meetings and discussions.
• Support a cross-functional teams with cybersecurity support.

Travel: Some local travel may be expected

Required Skills

• A minimum of fifteen (15) years of related work experience in information security, and of those years, at least ten (10) years of experience supporting a component of the Department of Defense (DoD) or Intelligence Community (IC).
• Cloud Service Provider Associate Certification (AWS, Azure, Oracle, or Google)
• Excellent oral, written, and interpersonal communication skills.
• Expertise in building bodies of evidence and assessment and authorization packages/activities within DoD and IC environments, specifically Special Access Programs.
• The ability to work under pressure and meet deadlines in a rapidly changing and demanding environment.
• Strong attention to detail, flexibility, and the ability to context switch.
• Expert in multiple domains of Information Technology, including cloud, cybersecurity, networking, and others.
• Expert in two or more of the following domains: vulnerability analysis and vulnerability management, SIEM operations and defensive cyber operations, system hardening and cyber tool engineering.
• Cybersecurity engineering is related to the RMF lifecycle, security control enforcement, body of evidence creation, and continuous monitoring, assessment, and authorization processes.
• Operating in overlapping security control and overlay environments (CNSSI 1253, Executive Order 12333, Intelligence, JSIG, etc.).
• Experience in overlapping domains at multiple classifications, including vulnerability analysis, SIEM operations, cyber network defense, cyber operations, malware analysis, information systems security management, or engineering.
• Proficiency with Xacta or eMASS.
• Experience with DoD Joint Special Access Program Implementation Guide (JSIG), AF Cyber policies, NIST SP 800 Series, and CNSSI 1253 security controls and overlays.
• Experience operating in cloud cybersecurity and shared responsibility models, networking, and/or data experience is required.
• Certifications: A DoD 8570.01-M IAT Level III technical certification (such as CISSP, CASP, or other level 3 technical certification) is required; and a Cloud Service Provider Associate Certification (AWS, Azure, Oracle, or Google) is required.
• Clearance: TS Clearance SCI Eligible / SAP Eligible
  
• Education: MA/MS in Cybersecurity, Computer Science or related field (or BS in a related field plus an additional 4 years of related work experience)
  

Desired Skills

• Experience with DEVSECOPS, containerization, and zero-trust architectures (preferred)
• Splunk or Elastic Certifications (preferred)
• Experience with Department of Defense (DoD) Special Access Program (SAP) administrative processes (preferred)

ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3800+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.