Information Systems Security Engineer, Entry Level

What you will be doing : As an Information Systems Security Engineer, you will be responsible for conducting and reviewing comprehensive technical security assessments of computing environments to identify vulnerabilities and instances of non-compliance with established Information Assurance (IA) standards and regulations. Your objective will be to recommend effective mitigation strategies to enhance security posture. You will ensure the validation and verification of system security requirements and conduct thorough analyses to establish robust system security designs. This includes the design, development, implementation, and integration of IA and security systems spanning networking, computing, and enclave environments, including scenarios involving multiple enclaves with varying data protection and classification requirements. Your role will involve integrating IA into systems deployed in operational environments, while also collaborating with architects and systems developers to identify and implement critical information security functionalities. This collaboration will promote the uniform application of agency security policies and enterprise solutions. Additionally, you will support the construction of security architectures and enforce the design and implementation of trusted relationships among external systems. Moreover, you will assess and mitigate system security threats and risks throughout the program life cycle, contributing to the overall resilience of our systems. Your participation in security planning, assessment, risk analysis, risk management, certification, and awareness activities related to system and networking operations will be essential in fostering a culture of security excellence. Your expertise will significantly strengthen our organizational commitment to safeguarding valuable assets.  Description of Job Duties / Responsibilities : Reviewing security architectures, firewall configurations, IDS / IPS, and security controls for new and proposed systems. Prevention and early detection and resolution of risks to high-value assets. Development and management of strategic and tactical physical, personnel, and procedural security programs. Architect, design, implement, support, and evaluate security-focused tools and services, including project leadership roles. Providing software vulnerability remediation advice to software developers and software development teams. Implementing security vulnerability testing tools to provide continuous monitoring and patch verification. Test and evaluate products in a lab environment. Reviews certification and accreditation (C&A) documentation, providing feedback on the completeness and compliance of its content. Knowledge of 8570 controls, testing information systems for compliance with the controls, and creating test cases. Knowledge of incident response and the creation, execution, and reporting of such activities. Knowledge of Firewalls, IDS / IPS, intrusion detection, VLANS, routing, and other network security technologies. Knowledge of virtualization technologies, including virtual firewalls, networking, and segmentation. Knowledge of networking and firewall configuration and monitoring. Knowledge of SIEM technologies such as Splunk and the creation of security event-related dashboards. Knowledge of Malware identification, containment, and eradication. Knowledge of access control systems, PKI, multi-factor authentication, and entitlements management. Proficient in Microsoft Windows and Linux operating systems. Provide input into the development of security policies and procedures. Provide detailed security recommendations for the secure development and maintenance of systems. Evaluate and recommend new and emerging security products and technologies. Provide security operations support as needed. Participate in projects that develop new intellectual property. Evangelize security within the organization and be an advocate for customer trust. Excellent written and verbal communication skills. Excellent leadership skills and teamwork skills. Results-oriented, high energy, self-motivated. The candidate may be required to respond to after-hours requests in a 24 x 7 environment. Certifications Required : DoD 8570 compliance with IASAE Level 1 is required Required Skills, Experience, and Education : No demonstrated experience is required. Bachelor’s degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required. Four (4) years of ISSE experience may be substituted for a bachelor’s degree. Clearance Required :    Must possess an active TS / SCI with Full Scope Polygraph security clearance to be considered for this role Independent Software is an Equal Opportunity Employer EOE, M / F / D / V.   Powered by JazzHR