National Security System (NSS) Engineer

Evolver Federal is seeking a National Security System (NSS) Engineer to support its Federal client in Bluemont, VA in analyzing and mitigating risk for a portfolio of National Security Systems. The NSS Engineer will review and analyze system design and security architecture documentation as well as security documentation, including System Security Plans (SSPs), to identify areas of noncompliance with security requirements and security risk, also identifying discrepancies among documentation as it relates to technical implementation.

The successful candidate will have SME-level knowledge of security requirements for National Security Systems (NSS) with strong communication skills to clearly articulate security risk to stakeholders at all layers of the client organization.
Responsibilities

• Draft and maintain Standard Operating Procedures (SOPs) for internal and external processes.
• Analyze cybersecurity data (e.g., continuous monitoring, configuration, vulnerabilities, assets, software) to detect trends, and identify risks.
• Recommend risk mitigation strategies for common vulnerability trends identified.
• Develop procedures for continuous monitoring of network systems and devices.
• Manage and review NSS Performance Plan Metrics; report discrepancies to compliance leadership (ISSO and ISSM).
• Support audits (e.g., FISMA, GAO, OIG) with required documentation and responses.
• Review and analyze system design, architecture, and interconnection documentation, including Security Architecture Diagrams, and compare to System Security Plans (SSPs), identifying discrepancies and/or misalignments.
• Draft POA&Ms, conduct POA&M analysis, advise on mitigation plans and milestones, and review artifacts for POA&M closure.
• Provide input on waivers and/or accepted risks, articulating compensating controls.
• Create Security Impact Analysis (SIA) reports based on engineering assessments.
• Develop and deliver presentations on security engineering topics to stakeholders.
• Review and analyze security scan results from various layers: OS, application, database.
• Execute scans using Tenable Nessus and other web/database scanning tools.
• Manage and administer Red Hat/Linux Virtual Machines and operating systems.
• Perform patching, build servers, and automate infrastructure tasks.
• Utilize scripting languages (e.g., Bash, Python, Shell) for automation and log analysis.
• Read system logs and troubleshoot at the OS level.

Basic Qualifications

• 5 years of related experience with a Bachelor's degree or 8 years of overall related experience in a relevant field.
• 1 year of experience with CNSS, CNSSI 1253, DoD and IC requirements, NIST 800-53 rev 5, NIST 800-37 rev 2 RMF, NIST 800-137, and FISMA Metrics.
• 1 year of experience evaluating security controls in accordance with NIST 800-53 in support of the Federal Government for NSS systems.
• 1 year of experience documenting and managing the POA&M lifecycle.
• 1 year of experience with continuous monitoring, including vulnerability and configuration management.
• 1 year of experience in client engagement.
• Experience with Red Hat Enterprise Linux (RHEL) and Linux-based virtual machine environments.
• Experience in patching, server builds, system automation, and log analysis.
• Experience with scripting tools (e.g., Python, Bash, PowerShell).
• Must have at least one cybersecurity certification: CISSP, CISM, CISA, or CEH.
• Must have an active Top Secret//SCI clearance

Preferred Qualifications

• 2+ years of experience with CNSS, CNSSI 1253, DoD/IC requirements, NIST frameworks, and FISMA Metrics.
• 2+ years of experience evaluating security controls and managing POA&M lifecycle.
• Experience presenting technical concepts to both technical and non-technical audiences.
• Ability to manage changing priorities and proactively communicate project risks.
• Strong analytical, critical thinking, and organizational skills.
• Experience analyzing scan results from tools such as Tenable Nessus, Burp Suite, WebInspect, Acunetix, DbProtect, ARCAT, etc.

Evolver Federal is an equal opportunity employer and welcomes all job seekers. It is the policy of Evolver Federal not to discriminate based on race, color, ancestry, religion, gender, age, national origin, gender identity or expression, sexual orientation, genetic factors, pregnancy, physical or mental disability, military/veteran status, or any other factor protected by law.

Actual salary will depend on factors such as skills, qualifications, experience, market and work location. Evolver Federal offers competitive benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies.