Information Systems Security Engineer

• Location: Annapolis Junction
• Type: Contract
• Job #3709

Title: Information Systems Security Engineer
Location: Annapolis Junction, MD
Compensation Range: $195 -$215K
*Clearance: *Active TS/SCI w/ Polygraph needed to apply *

Company Overview:
Cornerstone Defense is the Employer of Choice within the Intelligence, Defense, and Space communities of the U.S. Government. Realizing early on that our most prized assets are our employees, we continually focus our attention on improving the overall work/life experience they have supporting the mission. Our Team is pushed every day to use their industry leading knowledge to provide end-to-end solutions to combat our nation's toughest and most secure problems. If you are looking for a place to not only be professionally challenged, but encouraged and supported by a company that cares, don't look any further than Cornerstone Defense.

Benefits Overview:
Cornerstone Defense offers a very comprehensive benefits package including, but not limited to: Medical, Dental and Vision Plans * Generous PTO Policy * 401(k) * HSA and FSA options * Life and Disability Insurance * Tuition Reimbursement and Training * Perks at Work Discount Program * Referral Program * Leads Generation Program * CollegeAmerica 529 * Fitness Reimbursement Program * Travel Assistance * Norton Lifelock Benefit Solutions * Life Planning Financial & Legal Services *

Position Summary:
We are seeking a skilled and mission-focused Information Systems Security Engineer (ISSE) to support a program of critical importance to national security. The ideal candidate will have extensive experience securing complex systems and ensuring compliance with DoD cybersecurity policies and frameworks. You will serve as a key technical contributor responsible for implementing robust security measures, conducting risk assessments, and developing and maintaining system security documentation.
This position requires a thorough understanding of system security engineering principles and the ability to apply security solutions across the systems development lifecycle.

Required Qualifications:

• A minimum of seven (7) years of experience as an ISSE on programs and contracts of similar scope, type, and complexity.
• Bachelor's degree in Computer Science, Information Assurance, Information Security System Engineering, or a related discipline from an accredited college or university.
• Four (4) years of additional ISSE experience may be substituted for the degree requirement.
• IAT Level II Certification Required (e.g., Security+ CE, CCNA Security, or equivalent DoD 8570-compliant certification)

Key Responsibilities:

• Ensure systems are designed, developed, and implemented in compliance with DoD and organizational cybersecurity standards and best practices.
• Develop and maintain security architecture and design artifacts to support accreditation and security authorization.
• Perform system security engineering activities, including security planning, interface definition, requirements analysis, and secure configuration.
• Conduct security risk assessments and vulnerability analysis, and recommend mitigation strategies.
• Implement and maintain technical security safeguards and countermeasures.
• Collaborate with system architects, developers, and engineers to integrate security into system designs.
• Support system assessment and authorization (A&A) activities under the Risk Management Framework (RMF).
• Develop and update system security plans (SSPs), plans of action and milestones (POA&Ms), and other documentation as required.
• Ensure security controls are implemented and operating as intended, and recommend corrective actions when necessary.
• Maintain up-to-date knowledge of emerging cybersecurity threats, technologies, and compliance requirements.

Preferred Qualifications:

• Strong familiarity with DoD cybersecurity policies, NIST Special Publications, and RMF.
• Experience supporting system development life cycles (SDLC) from a cybersecurity perspective.
• Knowledge of security tools such as ACAS, HBSS, STIGs, and SCAP compliance tools.