Information Systems Security Engineer (ISSE) - ECS : Job Details

ECS is seeking an Information Systems Security Engineer (ISSE) to work in our Fairfax, VA office. (Situational telework eligible) Please Note: This position is contingent upon additional funding. Specific responsibilities include but are not limited to:

• Provide expertise and recommendations in applying security requirements to complex combatant command projects, identifying gaps, and while integrating new technologies.
• Develop secure system architectures and hardening solutions.
• Conduct vulnerability assessments, security testing, and continuous monitoring.
• Implement security controls per RMF and NIST guidelines.
• Support risk assessments and incident response efforts.
• Ensure security policies and best practices are integrated into system design.
• Develop strategies to address potential solutions to complex problems.
• Develop and document requirements from project inception to conclusion.
• Provide strategic advice, technical guidance, and expertise to program and project staff.
• Apply security controls and all technical mechanisms required by DoD RMF/Joint Special Access Program Implementation Guide (JSIG)/and Intelligence Community (IC) Directives and building security assessment procedures and evidence for assessment by Authorizing Officials of body of evidence.
• Engineering, administration, and configuration of Nessus scans and policies, Trellix/McAfee back end and policies, Splunk and Elastic SIEM administration, engineering, and query languages (SPL, SQL, or ES/QL) for analysis.
• Apply STIGs, and various security mechanisms within Windows, Linux, and AWS cloud consoles.
• Identify and analyze information system vulnerabilities and compliance issues.
• Administration of AWS cloud console and cybersecurity mechanisms, and STIG/SCAP compliance checker.
• Execute incident response as necessary
• Provide detailed analysis, evaluation, and recommendations for improvements, optimization, and/or maintenance efforts for specified mission-critical challenges/issues as related to system vulnerabilities and remediation.
• Coordinate cross-functional teams through meetings and progress measuring activities.
• Participate in project performance review meetings and discussions.
• Support a cross-functional teams with cybersecurity support.

• A minimum of fifteen (15) years of related work experience in information security, and of those years, at least ten (10) years of experience supporting a component of the Department of Defense (DoD) or Intelligence Community (IC).
• Cloud Service Provider Associate Certification (AWS, Azure, Oracle, or Google)
• Excellent oral, written, and interpersonal communication skills.
• Expertise in building bodies of evidence and assessment and authorization packages/activities within DoD and IC environments, specifically Special Access Programs.
• The ability to work under pressure and meet deadlines in a rapidly changing and demanding environment.
• Strong attention to detail, flexibility, and the ability to context switch.
• Expert in multiple domains of Information Technology, including cloud, cybersecurity, networking, and others.
• Expert in two or more of the following domains: vulnerability analysis and vulnerability management, SIEM operations and defensive cyber operations, system hardening and cyber tool engineering.
• Cybersecurity engineering is related to the RMF lifecycle, security control enforcement, body of evidence creation, and continuous monitoring, assessment, and authorization processes.
• Operating in overlapping security control and overlay environments (CNSSI 1253, Executive Order 12333, Intelligence, JSIG, etc.).
• Experience in overlapping domains at multiple classifications, including vulnerability analysis, SIEM operations, cyber network defense, cyber operations, malware analysis, information systems security management, or engineering.
• Proficiency with Xacta or eMASS.
• Experience with DoD Joint Special Access Program Implementation Guide (JSIG), AF Cyber policies, NIST SP 800 Series, and CNSSI 1253 security controls and overlays.
• Experience operating in cloud cybersecurity and shared responsibility models, networking, and/or data experience is required.
• Certifications: A DoD 8570.01-M IAT Level III technical certification (such as CISSP, CASP, or other level 3 technical certification) is required; and a Cloud Service Provider Associate Certification (AWS, Azure, Oracle, or Google) is required.
• Clearance: TS Clearance SCI Eligible / SAP Eligible
• Education: MA/MS in Cybersecurity, Computer Science or related field (or BS in a related field plus an additional 4 years of related work experience)