Information Systems Security Engineer

Overview

On Site
Full Time

Skills

Information Systems
ISSE
Risk Management
Cyber Security
Leadership
Attention To Detail
Risk Assessment
Security Architecture
Integrated Circuit
IC
Internal Communications
Network
Systems Design
Security Analysis
Continuous Monitoring
Regulatory Compliance
Evaluation
Interfaces
NIST SP 800 Series
Risk Management Framework
RMF
ICD
CNSS
DoD
STIG
Nessus
Splunk
Wireshark
HBSS
McAfee ePO
Firewall
IDS
IPS
Multi-factor Authentication
System Security
Documentation
Security Controls
Traceability Matrix
SCTM
Unix
Microsoft Windows
Virtualization
VMware
Hyper-V
Cloud Computing
Microsoft Azure
Google Cloud Platform
Google Cloud
FOCUS
Cloud Security
Encryption
TLS
SSL
IPsec
Virtual Private Network
PKI
Security QA
Nmap
Metasploit
Burp Suite
Linux
Scripting
Python
Windows PowerShell
Bash
Software Development Methodology
Collaboration
Issue Tracking
JIRA
Confluence
ServiceNow
CISSP
Certified Ethical Hacker
Amazon Web Services

Job Details

Job Description:

Base-2 Solutions is seeking a highly skilled and motivated Information Systems Security Engineer (ISSE) to join our team. Our ISSEs play a critical role in safeguarding cutting-edge systems that support national defense and mission-critical operations. We are looking for security professionals who bring expertise in system security design, risk management, and cybersecurity frameworks, as well as strong leadership qualities and an eagerness to tackle complex challenges. Our ideal candidate will demonstrate versatility, attention to detail, and a commitment to protecting sensitive information and systems as we continue to push technology forward.

Responsibilities:

  • Develops, implements, and maintains security solutions for complex systems to ensure confidentiality, integrity, and availability.

  • Conducts system security analysis, risk assessments, and vulnerability assessments to identify and mitigate risks.

  • Supports the development of security architecture and system security engineering artifacts based on NIST, DoD, and IC policies and guidelines.

  • Collaborates with system architects, software engineers, and network engineers to incorporate security requirements into system design.

  • Develops and maintains System Security Plans (SSPs), Security Assessment Reports (SARs), and related Risk Management Framework (RMF) documentation.

  • Performs continuous monitoring and ensures compliance with applicable security standards (NIST SP 800-53, ICD 503, CNSS, etc.).

  • Provides recommendations for improving system security posture and addresses security incidents as they arise.

  • Engages in security testing, evaluation, and certification & accreditation (C&A) activities.

  • Interfaces with government customers and stakeholders to effectively communicate technical information and security strategies.

Experience with some or all of the following:

  • Security frameworks and standards such as NIST SP 800-53, RMF, ICD 503, CNSS, DoD STIGs

  • Security tools such as ACAS, Nessus, Tenable, Splunk, Wireshark, HBSS, McAfee ePO

  • Security technologies including Firewalls, IDS/IPS, SIEMs, VPNs, PKI, Multi-Factor Authentication

  • System security documentation: SSPs, POA&Ms, SARs, Security Control Traceability Matrix (SCTM)

  • Experience with Linux, Unix, Windows, and Virtualization technologies (VMware, Hyper-V)

  • Cloud platforms such as AWS, Azure, Google Cloud with a focus on cloud security

  • Encryption protocols and technologies such as TLS/SSL, IPsec, VPN, PKI

  • Security testing tools: Nmap, Metasploit, Burp Suite, Kali Linux

  • Scripting and automation experience: Python, PowerShell, Bash

  • Knowledge of system development lifecycle (SDLC), software assurance, and secure coding practices

  • Collaboration and issue-tracking tools like JIRA, Confluence, ServiceNow

  • Certifications such as CISSP, CAP, CEH, Security , AWS Security Specialty, or equivalent
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.