Cyber Security Systems Engineer (ISSE)

Bridge Core (BCore) • Full-time • Chantilly, VA, US • $120k - $150k / year • 4h ago

Overview
Cyber Security Systems Engineer (ISSE) Chantilly, VA TS/SCI with Poly

Do you want to join a team that is building tailored technical solutions to modernize our governments mission and our clients business? Do you have a desire to change how people work? Are you interested in helping to protect our nations cyber interests? Join our growing team supporting customer missions as a Cyber Security Systems Engineer (ISSE) in Chantilly, Virginia.

Qualifications

Required Qualifications:

We are actively seeking Cyber Security Systems Engineers with a minimum of eleven (11) years' experience. This opportunity is supporting the customers Division level A&A projects which has several Branches within it. The A&A projects are therefore at various levels within the customer organization depending upon which team is responsible for initial development and accreditation vs. long term Operations and Maintenance support. Bachelors or Masters Degree are preferred in one or more discipline but can be waived if previous direct ISSE support to this customers agency.

Specific skills include the following:

Possess multi-tasking skills, as well as be a good communicator/facilitator. Comfortable at all levels from developer to senior staff.
Knowledge of the complex network environments involving shared networks and multiple security enclaves.
Possess the ability to bridge the technical implementation (i.e. developer talk), into commonly understood security words. Often this is a skillset and is not an actual language, but frequently translation or a basic understanding needs to be conveyed by the ISSE when speaking with others or in writing the documentation in order to ensure its easy to understand.
Document the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation for various Assessment and Authorization (A&A) efforts
Document and obtain a general understanding of the architecture being developed or that was developed for each project in order to write the Systems Security Plans (SSP)/CONOPS in the Greenlight application.
Gather the information by working with various team members in order to write various additional A&A related documents such as Contingency Plan (CP), General User Guide (GUG), Privileged User Guide (PUG), Standard Operating Procedures (SOPs), etc.
Support Accreditation and Authorization (A&A) reviews by ISSO/M, as well as the Security Controls Assessor (SCA)
Document the Plans of Actions and Milestones (POA&Ms) implementation responses or mitigations, as well as providing all required artifacts (i.e. evidence gathering from the teams)
Coordinating with various contractors and staff personnel to obtain the A&A content, as well as working with various customer security organizations to navigate the customers A&A process in order to achieve Authority to Develop (ATD), Interim Authority to Operation (IATT), as well as Authority to Operate (ATO).
Keep track of where each of the various A&A projects are within the customers A&A process in order to know when its time to re-submit for accreditation or an accreditation extension.

Desired Qualifications:

Previous ISSE experience directly supporting the customer.
Previous ISSO experience directly supporting the customer is also helpful.
Various security tools and reports such as Greenlight, RoadRunner, Rapid 7, WebInspect, App Detective, and Splunk
Public, private and hybrid Cloud experience (AWS, Microsoft Azure, etc.)
Virtualization experience (VDI & VMWare)
Basic knowledge is helpful, but not required for the following general topics: Cloud security control implementation, PKI implementation, STIG compliance and vulnerability management, and Security Development and Operations (SecDevOps)
CISSP, or GSLC
AWS Certified Security Specialty
Basic Excel and Microsoft Office365

What you can expect from us