ISSE Level 3

JOB DESCRIPTION: Responsible for conducting information system security engineering activities that capture and refine information security requirements and ensures their integration into information systems through purposeful design and configuration
Specific duties include: Lead a small team of ISSE's
Validate and verify system security requirements, conducting security control assessments, and establishing system security designs for cloud-based and hybrid systems
Identify and implement appropriate information security architectures and configurations to ensure compliance with established Information Assurance (IA) standards and regulations
Recommend and develop technical solutions based on current and desired system security architecture
Propose, assess, coordinate, implement, and enforce information systems security policies, standards, and methodologies
Assess and mitigate system security threats and risks throughout the system life cycle
Analyze and assess system implementation against multiple security compliance policies, identifying points of vulnerability and non-compliance, and recommending and implementing mitigation strategies
Evaluate the impact of new development on the operational security posture of the system and formulating security compliance requirements for new system features
Audit and assess system security configuration settings using common methodologies and tools
Lead and/or contribute to the security planning, assessment, and authorization activities for various systems and networks spanning multiple enclaves and with differing data protection/classification requirements
Support risk assessment, risk management, continuous monitoring, incident response, and other IA program support functions
Work closely with system owners and developers to ensure that systems and services successfully implement appropriate security controls and meet security requirements for processing classified information
Serve as a subject matter expert in security architecture, to include providing advice and guidance to Program Managers and internal program teams
REQUIRED SKILLS: Knowledge of and experience with common security tools (such as Nessus and Splunk), communication protocols, and encryption techniques/tools.
Knowledge of and experience with NIST and CNSS control documentation, the RMF, STIG compliance, and the DoD Assessment & Authorization process
Knowledge of and experience with Windows and Linux Operating Systems
Strong analytical skills
Strong verbal and written communication skills
DESIRED SKILLS: Knowledge of and experience with securing cloud-based systems
Certified Ethical Hacker (CEH) certification
Scripting knowledge
Understanding of regular expressions
EDUCATION AND EXPERIENCE: Twenty (20) years experience as an ISSE on programs and contracts of similar scope, type, and complexity is required
Master's degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline may be substituted for two (2) years of experience, reducing the requirement to eighteen (18) years of experience
Bachelor's degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required
Four (4) years of additional ISSE experience may be substituted for a bachelor's degree
Compliance with IASAE Level 3 is required
Both Information Systems Security Engineering Professional (ISSEP) and CISSP or CASP Certifications are required