Information Systems Security Engineer (ISSE), Sr.

An active Top Secret clearance with SCI eligibility is required to start work. This position reports onsite at our client location and has potential for telework 1-2 days per week. Travel may be required. Core business hours are 0900 to 1500., * Responsible for building, deploying and Patching HBSS Windows and ACAS servers.

• Responsible for building, maintaining, and patching all ePO, Security Center, and Nessus servers.
• Provides Security Center accounts for Vulnerability Managers to scan devices within ACAS.
• Assist with remediation/mitigation or make recommendation based on vulnerability findings from ACAS and STIGs.
• Knowledge of building virtual servers, deploying, and patching all McAfee modules via the ePO, configuring McAfee policies for each environment.
• STIG'ing HBSS Windows OS, McAfee policies to comply with benchmarks (Not reviewing or confirming), STIG'ing other servers.
• Ability to Run SCAP scans on Windows and RHEL servers.
• Able to troubleshoot Security Center and Nessus scanner issues.
• Assist with selecting RMF Security Controls.
• Develop technical documents like RMF policies, SLCM, IRP, DRP, Security CONOPS.
• Assist with selecting RMF Security Controls.
• Draft technical boundary and architecture diagrams.
• Harden and implement applicable STIGs.

• DoD Top Secret Clearance
• Bachelor of Science (B.S.) in Information Technology, Cybersecurity, Engineering or similar
• Security+; compliance with DoD 8570 IAT Level III (ex. CISSP)
• 5+ years of Information Management/Information Technology experience providing both technical and cyber analyst support, HBSS, ACAS
• Cyber analyst experience should include supporting the development, review, and approval of RMF A&A packages for software systems and enclaves
• 5+ years of experience with IA / INFOSEC concepts and requirements: Firewall Policy, Ports & Protocols, Cybersecurity, Cybersafe, DoD/DON RMF processes and standards, etc.
• Experience with wireless technologies and IEEE 802.11 standards is required
• Experience with the DISA published Security Technical Information Guidance (STIG) requirements and compliance processes, SCAP Content Checker, Security Readiness Review (SRRs), and other DoD approved tools like eMASSter or Vulnerator
• Ability to manage time well to meet assigned milestones
• Strong communication skills; motivated to investigate, analyze, and document system issues and resolutions; provides consistent status updates to ensure IT security projects stay focused
• Strong work ethic and a proven professional - respectful, dependable, takes initiative and follows through
• Up to 15% travel may be required