Linux Engineer / Information Systems Security Engineer (ISSE)

Job Title: Linux Engineer / Information Systems Security Engineer (ISSE)

Location: Columbia, MD (hybrid)

Clearance: Top Secret SCI

Certification: CompTIA Security+ or higher

Salary: $185k - $200k (W2 role only)

Job Description

BEAT is looking for a Security Engineer/Architect. Candidate will be required to understand and document a systems design and implementation that encompass multiple enclaves, to include those with differing data protection/classification requirements. The candidate should understand distributed architectures and cloud-based systems for big data applications.

Essential Job Responsibilities

• Will create, review and edit authorization documentation for completeness and accuracy in accordance with federal and DoD policy.
• Thoroughly understand and be able to implement DoD RMF system accreditation processes.
• Assess use case and operational risk of integrated open source, and GOTS/COTS software components.
• Will use vulnerability management systems, automated security scanning tools, and system accreditation record systems.
• Must be able to grasp new concepts, facilitate information exchanges for data gathering, and collaborate with diverse audiences.
• Will follow established processes where applicable and establish and execute defensible processes where none are prescribed.
• Provide security planning, assessment, risk analysis, and risk management support.
• Recommend system-level solutions to resolve security requirements and guide the development team in meeting the security posture requirements.
• Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures.
• Must apply existing knowledge of IA policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments.
• Must be able to interact well with others to complete work.
• Support and secure Linux-based systems across multiple enclaves with varying classification and data protection requirements.
• Implement and validate Linux security configurations in accordance with DISA STIGs and SRGs.
• Administer, configure, and maintain Red Hat Enterprise Linux systems to ensure high availability, performance, and security
• Perform system installation, patching, upgrades, and troubleshooting across development, test, and production environments
• Monitor system performance and capacity, proactively identifying and resolving issues to minimize downtime
• Implement security best practices, including user management, access controls, and compliance with organizational policies
• Automate routine administrative tasks using shell scripting and configuration management tools (e.g., Ansible)
• Implement and document RMF security controls in eMASS in accordance with NIST SP 800-53
• Develop and maintain System Security Plans (SSPs) and control implementation documentation in eMASS
• Support ATO and continuous monitoring activities by maintaining accurate eMASS data
• Review vulnerability assessment results and manage POA&Ms within eMASS
• Coordinate with system engineers, ISSOs, and assessors to resolve security control deficiencies
• Other duties as assigned.

Desired Skills

• CISSP is highly desired
• 9+ years of experience as an ISSE with large multi-tiered programs and Bachelors in related field; OR 7 years relevant experience with Masters in related field; OR High School Diploma or equivalent and 13 years relevant experience.
• Experience implementing DoD system accreditation processes (DIACAP acceptable and RMF preferred).
• A working knowledge of TCP/IP suite of protocols and services, computer architectures, and network topologies is required.
• Experience with DISA STIGs and SRGs, vulnerability management systems, mitigation and compliance processes, and reviewing results from automated security scanning tools.
• Working knowledge of Linux command-line operations and applying DISA STIGs for system compliance.
• Familiarity with Linux-based vulnerability scanning, patching, and compliance validation tools.
• The ability to work independently and as part of a team is needed.
• Flexibility is essential to adapt to schedule changes as needed.

Job Type: Full-time

Pay: $185,000.00 - $200,000.00 per year

Benefits:

• 401(k)
• 401(k) matching
• Dental insurance
• Health insurance
• Health savings account
• Life insurance
• Paid time off
• Parental leave
• Professional development assistance
• Referral program
• Retirement plan
• Tuition reimbursement
• Vision insurance

License/Certification:

• CompTIA Security+ (Required)

Security clearance:

• Top Secret (Required)

Ability to Commute:

• Columbia, MD 21044 (Required)

Work Location: Hybrid remote in Columbia, MD 21044