System Security Engineer

Position Title: (1782) Security Engineer (ISSE)

Onsite or Remote: Hybrid

City: Ft. Belvoir

State: Virginia

Clearance: TS/SCI with CI Poly

Salary Range: $150k - $200k

Description

Client is currently seeking a highly skilled Security Engineer/Architect for a hybrid position located in Ft. Belvoir, Virginia. The ideal candidate will be responsible for understanding and documenting systems designs that encompass multiple enclaves, including those with varying data protection and classification requirements. The role will involve working with distributed architectures and cloud-based systems to support big data applications.

Candidates must be willing to work on-site five days a week, collaborating closely with government clients to implement secure, scalable systems that meet the highest security standards.

Essential Job Responsibilities

• Create and Review Authorization Documentation: Ensure completeness and accuracy of documentation related to system authorization in compliance with federal and DoD policies.
• Understand and Implement DoD RMF Accreditation: Deep knowledge of the DoD Risk Management Framework (RMF) for system accreditation and the ability to execute these processes effectively.
• Assess Risk of Integrated Software Components: Evaluate use cases and operational risks when integrating open-source, GOTS (Government Off-the-Shelf), and COTS (Commercial Off-the-Shelf) software components.
• Utilize Vulnerability Management Systems: Leverage automated security scanning tools and vulnerability management systems for system assessment and tracking.
• Knowledge Transfer & Collaboration: Be able to quickly understand new concepts, gather data, and collaborate effectively with diverse teams.
• Develop Defensible Security Processes: Follow established procedures or create new defensible processes when necessary to ensure security best practices.
• Security Planning & Risk Management: Provide security planning, assessments, and risk management support throughout the project lifecycle.
• Recommend System-Level Security Solutions: Propose and guide the development team in the implementation of system-level security solutions to meet the security requirements.
• Enforce Trusted System Relationships: Support the Government in ensuring secure and trusted relationships among external systems and architectures.
• Design Secure Environments: Utilize existing knowledge of Information Assurance (IA) policies, procedures, and workforce structure to design, develop, and implement secure networking and computing environments.
• Collaborate for Completion: Work effectively with other team members to complete tasks and projects successfully.
• Other Duties as Assigned: Perform additional responsibilities as required by the client and project.

Minimum Qualifications

• Security Clearance: A current TS/SCI level U.S. Government clearance with a CI Poly is required; U.S. Citizenship required.
• Experience: At least 9 years of experience as an ISSE or in security-focused software/systems engineering with large, multi-tiered programs, and a Bachelor’s degree in a related field, OR 7 years of experience with a Master’s degree, OR 13 years of relevant experience with a High School Diploma or equivalent.
• DoD System Accreditation: Experience with implementing DoD system accreditation processes (DIACAP acceptable, RMF preferred).
• Networking Knowledge: Strong working knowledge of TCP/IP suite of protocols, computer architectures, and network topologies.
• DoD 8570 Compliance: Must have IAT Level II compliance (SSCP, Security , CCNA-Security, or GSEC certification).
• Vulnerability Management: Experience with DISA STIGs and SRGs, vulnerability management systems, and reviewing results from automated security scanning tools.
• Independent and Team Work: Ability to work both independently and as part of a team is essential.
• Hybrid Work Flexibility: Ability to work on-site 2-3 days per week in Ft. Belvoir, VA, with flexibility to adjust to changes in scheduling.

Preferred Requirements

• Certifications: CISSP-ISSEP certification is highly desired.