Apply for this Job
This position is contingent upon funding with an expected start date of December 2025 SECRET Clearance required SRG is seeking an Information System Security Engineer (ISSE) to perform STIG assessments using SCAP benchmarks, conduct vulnerability assessments with ACAS, manage compliance tracking in eMASS, develop POA&Ms, and complete RMF Step 5 authorizations On-site only, no telework. Position Responsibilities: Conduct Security Technical Implementation Guide (STIG) assessments using SCAP benchmarks and Evaluate STIG to ensure compliance with security standards.
Perform vulnerability assessments using the Assured Compliance Assessment Solution (ACAS) tool.
Execute processes within Enterprise Mission Assurance Support Service (eMASS) for security authorization and compliance tracking.
Develop and maintain Plans of Action and Milestones (POA&M) to address security vulnerabilities and ensure risk mitigation.
Complete Risk Management Framework (RMF) Step 5 authorizations in an Information System Security Engineer (ISSE) capacity.
Provide recommendations to stakeholders on risk reduction strategies and security enhancements.
Ensure compliance with DoD 8570.01-M and DFARS security baseline requirements. Required Qualifications: Active DOD Secret security clearance
Bachelor's degree in Information Systems, Information Technology, Computer Science, or Computer Engineering.
Minimum ten (10) years of full-time professional experience in Risk Management Framework (RMF) activities or 8 years with a MS. 15 years of documented experience can be substituted in lieu of a degree (all other certifications are required).
DoD Approved 8570 Baseline Certification: Category IAM Level III (One of the Following):
CISM
CISSP (or Associate)
CCISO
GSLC
Date Posted: 28 April 2025
Apply for this Job