- Conducting risk analysis on products reviewing CVEs, plugins, CWEs etc;
- Understanding how to explain and remediate the technical security controls;
- Facilitating Technical Insertions (the introduction of any new and/or improved hardware or software capabilities into an established operational system) for new products;
- Reviewing change requests for security impacts and technical documentation from a security perspective;
- Participates in Agile Planning Events to provide technical input.
- Providing technical input into trade studies for tools;
- Providing technical expertise in implementation of technical security controls in government cloud environments (cloud security experience is highly desired);
- Researching, evaluating, testing, recommending, communicating, and implementing new security software or devices;
- Implementing, enforcing, communicating internet, network, or other information security policies or security plans for data, internet, software applications, hardware, telecommunications, and computer installations;
- Managing all aspects of an organization's information security system, including researching, testing, training and implementing programs designed to safeguard sensitive information from any possible breaches.
- Bachelor's Degree with 7 years related experience including cloud security OR 10 total years of experience in Information Assurance, and IT Security including cloud security
- Obtain and maintaining an IAT Level III baseline certification within (90) days of hire
- Technical expertise in system security vulnerabilities and remediation techniques, network, and web-related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, etc.)
- Technical expertise in security engineering, system and network security, authentication and security protocols, cryptography, and application security
- Experience with vulnerability scanning and testing tools such as: Burp suite, Rapid7 InsightVM, Tenable Nessus, Web Inspect, Net Sparker, DB Protect, App Detective, Prisma Cloud, Core Impact, Code DX and similar.
- Experience analyzing vulnerabilities, establish cause and impact, and identify the corrective action needed to eliminate and prevent the event from happening in the future.
- Experienced in vulnerability validation, Pre-Production, remediation, testing for false positives and vulnerability research skills.
- Experience using at least one scripting language (e.g.: Perl, Python, PowerShell)
- Experience with system administration in Windows and/or Linux.
- Experience testing and operating Amazon Web Services, Azure, and/or Google
- Conducting risk analyses from vulnerability, compliance scans, pen testing results, or other audit activity; writes including but not limited to Plan of Action and Milestones, System Security Plans, Security Control Traceability Matrices, Configuration Management Plans, Contingency Plans and Test Results, Business Impact Analyses, and Security Impact Analyses;
- Submitting monthly scan data in support of FISMA scorecard compliance requirements;
- Responding to data calls, scan requests and weekly and monthly reporting requirements.
-
Security Engineer
1 week ago
CACI International Inc Sterling, United StatesCACI is seeking a Cyber Security Engineer to support our Makalu contract. If you are interested and passionate about working as part of a modern, fast-paced agile software development team, then this opportunity is for you · On team Makalu, cyber security engineers are an integra ...
-
Security Engineer
3 days ago
CACI International Sterling, United StatesCACI is seeking a Cyber Security Engineer to support our Makalu contract. If you are interested and passionate about working as part of a modern, fast-paced agile software development team, then this opportunity is for you · On team Makalu, cyber security engineers are an integra ...
-
Security Engineer
1 week ago
Kyrus Tech Sterling, United StatesJob Type: Full-time · Location: Sterling, VA or Denver, CO. · Clearance Requirements: Must be a U.S. citizen; S or TS clearance required · Years of Experience: 3-7 years · Working with Kyrus · Kyrus is committed to solving our customer's hardest problems with eagerness, effe ...
-
IT Security Engineer
5 days ago
Dedrone Sterling, United StatesIT Security Engineer · Location: · Sterling, VA or Phoenix, AZ (USA) · Introduction: · At Dedrone we are building the world's leading airspace security solutions to protect people, property and information from the threat of drones and enable the good drones to fly. Our AI-dr ...
-
Security Engineer
5 days ago
CACI International Sterling, United StatesCACI is seeking a Cyber Security Engineer to support our Makalu contract. If you are interested and passionate about working as part of a modern, fast-paced agile software development team, then this opportunity is for you · On team Makalu, cyber security engineers are an integr ...
-
IT Security Engineer
5 days ago
Bowman Williams Sterling, United StatesIT Security Engineer (MSP) · IT Security Engineer (MSP) · Are you a talented and driven IT Security Engineer (MSP) with a passion for safeguarding digital infrastructure? We have an exciting opportunity for a IT Security Engineer (MSP) to join our team at a client site in Sterli ...
-
Security Engineer
5 days ago
Kyrus Tech Sterling, United StatesJob Type: · Full-time · Location: · Sterling, VA or Denver, CO. · Clearance Requirements: · Must be a U.S. citizen; S or TS clearance required · Years of Experience: · 3-7 years · Working with Kyrus · Kyrus is committed to solving our customer's hardest problems with eag ...
-
Security Engineer
5 days ago
Cloud Analytics Technologies LLC Sterling, United StatesWork Authorization: · US Citizen, Green Card, H-1B, GC-EAD, OPT-EAD, L2-EAD, TN Visa · Local Candidates Preferred. Non-local candidates must be willing to pay for your own interview travel expenses and relocation costs · **Candidates submitted over the max. bill rate will be au ...
-
CACi Sterling, United StatesCleared Security Engineer Job Category: Engineering Time Type: Full time Minimum Clearance Required to Start: TS/SCI with Polygraph Employee Type: Regular Percentage of Travel Required: Up to 10% Type of Travel: Local Anticipated Posting End: 11/24/2024 CACI is seeking a Cyber Se ...
-
Cyber Security Engineer
5 days ago
Leidos Sterling, United StatesDescription · We are seeking a Cyber Security Engineer (SME). This role is responsible for protecting the customer's information systems and networks from potential cyber-attacks. The Cyber Security Engineer must display an excellent understanding of technology and utilization o ...
-
Cyber Security Engineer
1 week ago
Leidos Sterling, United StatesWe are seeking a Cyber Security Engineer (SME). This role is responsible for protecting the customer's information systems and networks from potential cyber-attacks. The Cyber Security Engineer must display an excellent understanding of technology and utilization of Firewalls (Se ...
-
Cleared Security Engineer
2 days ago
CACi Sterling, United StatesCleared Security EngineerJob Category: EngineeringTime Type: Full timeMinimum Clearance Required to Start: TS/SCI with PolygraphEmployee Type: RegularPercentage of Travel Required: Up to 10%Type of Travel: LocalAnticipated Posting End: 11/24/2024 CACI is seeking a Cyber Security ...
-
Cyber Security Engineer
5 days ago
REI Systems Sterling, United StatesOverview: · REI Systems mission is to deliver innovative technology solutions for Federal Clients. The foundation of our success is an unwavering determination to surpass our clients expectations. We offer this same commitment to our employees by providing professional developme ...
-
Cyber Security Engineer
1 week ago
Avid Technology Professionals Sterling, United StatesThe Sr Cyber Security Engineer designs, develops, documents, analyzes, tests, integrates, debugs, conducts research and/or discovers and analyzes security flaws or vulnerabilities in software, networks, systems, and applications. The Sr Cyber Security Engineer ensures system secu ...
-
Cyber Security Engineer
1 week ago
REI Systems Sterling, United StatesOverview · REI Systems' mission is to deliver innovative technology solutions for Federal Clients. The foundation of our success is an unwavering determination to surpass our client's expectations. We offer this same commitment to our employees by providing professional developme ...
-
Network Security Tools Engineer
2 weeks ago
Nodel Sterling, United StatesNetwork Security Tools EngineerLocation: Dulles, VAMust have Public Trust Security ClearanceNode is supporting a U.S. Government customer on a large mission-critical development and sustainment program to design, build, deliver, and operate a network operations environment, inclu ...
-
Network Security Tools Engineer
2 days ago
BCMC, LLC Sterling, United StatesWe are supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment, including introducing new cyber capabilities to address emerging threats. The Network Security Too ...
-
Software Cyber Security Engineer
1 week ago
Waltonen Sterling Heights, United StatesWaltonen Engineering is actively seeking a Software Cyber Security Engineer to join our team · This role collaborates with a team of OS/BSP and Embedded Software problem solvers to test and evaluate systems for operating within internal and external Tactical Network Domains. Per ...
-
Network Security Tools Engineer
2 days ago
Nodel Sterling, United StatesNetwork Security Tools Engineer · Location: Dulles, VA · Must have Public Trust Security Clearance · Node is supporting a U.S. Government customer on a large mission-critical development and sustainment program to design, build, deliver, and operate a network operations environm ...
-
Network Security Tools Engineer
3 days ago
Argo Cyber Systems Sterling, United StatesNetwork Security Tools Engineer · Argo Cyber is supporting a U.S. Government customer on a large mission-critical development and sustainment program to design, build, deliver, and operate a network operations environment, including introducing new cyber capabilities to address ...
Sr. Information Systems Security Engineer - Sterling, United States - Illuminate Mission Solutions
Description
OverviewThe Information Systems Security Officer (ISSO) manages all aspects of an organization's information security system, for classified and unclassified systems, including researching, testing, training and implementing programs designed to safeguard sensitive information from any possible breaches. The ISSO drives Authority to Operate (ATO) and/or Authority to Proceed (ATP) efforts and makes independent recommendations to the customer during the process. ISSOs understand and execute the Risk Management Framework process. The ISSO conduct risk analyses and writes documents including Plan of Action and Milestones, System Security Plans, System Specific Policies and Procedures, Configuration Management Plans, Contingency Plans and Test Results, Business Impact Analyses, and Security Impact Analyses.
Responsibilities
As an information systems security engineer (ISSE), you will support the customer in safeguarding networks against unauthorized modification, destruction, or disclosure. Activities include but are not limited to:
Required Education, Experience, & Skills
Specific to cloud environment vulnerability management:
Desired Certifications: CISSP, CCSP, AWS-SEC, MCASEA
Equal employment opportunity employer:
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Illuminate is committed to providing veteran employment opportunities to our service men and women.