Principal Information Security Systems Engineer - Remote Opportunity
Role details
Job location
Tech stack
Job description
If you like high profile and challenging cloud system security work supporting the readiness of America's Navy ships, aircraft and expeditionary forces - Serco has a great opportunity for you! This Principal Information Security Systems Engineer (ISSE) will be working with a dynamic team supporting applications on the Defense Information System Agency (DISA) military cloud.
An active U.S. Department of War (DoW) Secret security clearance is required.
Bring your experience and collaborative skills to make an impact toward improving our military defense planning and combat readiness. Serco supports the U.S. Navy as the prime contractor for their Integrated Readiness Modeling, Technical and Professional Support Services contract. Our team conducts analysis and provides software development and lifecycle support for a portfolio of integrated applications used by the Navy to determine future fleet readiness requirements. You will be part of a 24-member team that works closely with the customer to ensure that our Navy is accurately resourced to provide the required level of maritime combat readiness.
In this role, you will:
- Coordinate Enterprise Mission Assurance Support Service (eMASS) and DoD Risk Management Framework (RMF) efforts.
- Monitor and maintain security controls and Plans of Action & Milestones (POA&Ms) for multiple cloud applications.
- Maintain vulnerability scans and effect resolution.
- Process eMASS workflows for cloud applications.
- Maintain Authority to Operate systems.
- Develop use cases as required.
- Coordinate team security training.
- Coordinate with Navy Qualified Validator to resolve control findings.
- Coordinate efforts to ensure security documents are up to date.
- Provide inputs to weekly and monthly government reports and support emerging government tasking.
- Create and maintain information system security documentation, Standard Operating Procedures (SOP), and provide guidance on active POA&Ms in accordance with NIST revisions.
- Conduct periodic and continuous monitoring of the system, procedures, and documentation to ensure compliance with the authorization package.
- Work within the IA team to perform basic system administration and maintain various IA tools, including audit collection and reporting systems, vulnerability management programs, and other continuous monitoring capabilities.
- Participate in the change management process, including reviewing change requests and assisting in the assessment of security impact of proposed changes and migrations.
- Monitor system recovery processes to ensure security features and functions are properly restored and functioning correctly following an outage.
- Coordinate information assurance program controls in accordance with DoD requirements.
- Identify deficiencies and provide recommendations for solutions; track findings with POA&M through mitigation and/or risk acceptance.
Requirements
- An active Secret security clearance.
- A Bachelor's degree (preferably in telecommunications, computer science, information systems management, electrical engineering, computer engineering or similar field of study).
- 5 plus years' experience with information networks and related security concerns.
- 4 years of experience with RMF tools including eMASS.
- DoD 8570.1 / DoD 8140.01 (IAT II Level certification).
- Experience using various IA tools in audit collection, audit review, audit management, and end point protection (HBSS, MDE /MDI).
Additional desired experience and skills
- COMPTIA Security + or higher, Certification highly desired.
- Experience with Splunk Enterprise operations is preferred and Splunk certifications are highly desired.
Benefits & conditions
Serco is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics.
Pay Transparency
Our Total Rewards package includes competitive pay, performance-based incentives, and benefits that promote well-being and work-life balance-so you can thrive both professionally and personally. Eligible employees also gain access to a wide range of benefits from comprehensive health coverage and health savings accounts to retirement plans, life and disability insurance, and time-off programs that support work-life balance. Program availability may vary based on factors such as contract type, location, hire date, and applicable collective bargaining agreements.
Salary range: The range for this position can be found at the top of this posting. This range is provided as a general guideline and represents a good faith estimate across all experience levels. Actual base salary will be determined by a variety of factors, including but not limited to, the scope of the role, relevant experience, job-related knowledge, education and training, key skills, and geographic market considerations. For roles available in multiple states, the range may vary to reflect differences in local labor markets. In addition to base salary, eligible positions may include other forms of compensation such as annual bonuses or long-term incentive opportunities.
Benefits - Comprehensible benefits for full-time employees (part-time employees receive a limited package tailored to their role):
- Medical, dental, and vision insurance
- Robust vacation and sick leave benefits, and flexible work arrangements where permitted by role or contract
- 401(k) plan that includes employer matching funds
- Tuition reimbursement program
- Life insurance and disability coverage
- Optional coverages that can be purchased, including pet insurance, home and auto insurance, additional life and accident insurance, critical illness insurance, group legal, ID theft protection
- Birth, adoption, parental leave benefits
- Employee Assistance Plan