***HYBRID POSITION IN CHESAPEAKE, VIRGINIA (TIDEWATER AREA)***
Job Summary The Information System Security Engineer (ISSE) will coordinate the security design for cloud resident systems and services. This includes requirements gathering, defining security roadmaps, creating security procedures, developing security policies and defining security controls in accordance/compliance with the Risk Management Framework (RMF). The ISSE will work towards gaining Assessment & Authorization (A&A) approvals for systems designed to reside on cloud resident systems. As with any position, additional expectations exist, which include, but are not limited to: - Adhering to typical working hours
- Meeting deadlines
- Following company policies as outlined by the Employee Handbook
- Communicating regularly with assigned supervisor
- Staying focused on the assigned tasks.
- Completing other tasks as assigned
As with any position, additional expectations exist. Some of these are, but are not limited to, adhering to normal working hours, meeting deadlines, following company policies as outlined by the Employee Handbook, communicating regularly with assigned supervisor(s), and staying focused on the assigned tasks including company meetings, and completing other tasks as assigned. Responsibilities
- Conducting security lifecycle and technical impact assessment including design requirements assessments, threat modeling, source code reviews and new technology impact assessment
- Leading security systems engineering involving hardware and software operating system and application solutions
- Utilizing expertise with security features and/or vulnerability of various operating systems as defined by US Air Force, NSA, NIST & DISA and USCYBERCOM
- Conducting IA vulnerability testing
- Utilizing System Engineering requirements, specifications, and processes in support of system IA certification requirements
- Implementing DoD and Federal IA Assessment & Authorization (A&A) Processes, IA controls and developing and maintaining associated A&A documentation IAW Risk Management Framework (RMF)
- Supporting security authorization activities and ensure compliance with RMF and development of security Plan of Actions and Milestone (POA&M) mitigations
Basic Qualifications - US Citizenship
- Must have an active DOD Secret Clearance
- Must meet DoD 8750.01 IAM Level II or higher (Sec , CISSP)
- Bachelor’s degree (BA/BS) in Information Systems, Computer Science, or another related field
- Demonstrated knowledge of cloud security and cybersecurity solutions including engineering architecture, requirements, determination, development, and implementation
- Demonstrated knowledge of advanced cyber threats and adversary methodologies
- Proven ability to implement new ideas and techniques that advance the state of the practice for cloud and cyber defensive operations
- Demonstrated experience with security features and/or vulnerability of various DoD operating systems
- Demonstrated experience implementing DoD and Federal Cybersecurity Assessment & Authorization (A&A) Processes, Risk Management Framework (RMF) controls and developing and maintaining associated A&A documentation
- Documented experience working U.S. Government contract proposals
- Proven experience with Windows Server, Microsoft Exchange, Microsoft Office products, Windows client OS and security, Network protocols and topologies, Routers, Firewalls, Gateways, and Unix-based operating systems
- Demonstrated ability to work effectively in a leadership-type role, ability to work independently with minimal supervision
Preferred Qualifications - Education: Master's Degree
- Years’ experience: 8 years of experience
- Proven ability to work effectively and manage multiple priorities while collaborating with internal and external cross-functional teams.
- Demonstrated ability to communicate effectively with users, project teams, and management.
- Demonstrated ability to work on a variety of problems of moderate scope and complexity where analysis of the situation or data requires thorough identification of factors and analysis of impact.
- Demonstrated ability to respond to significant inquiries from users.
- Demonstrated ability to define problems, collect data, establish facts, and draw valid conclusions.
Company Summary Join the VSolvit Team! Founded in 2006, VSolvit (pronounced 'We Solve It') is a technology services provider that specializes in cybersecurity, cloud computing, geographic information systems (GIS), business intelligence (BI) systems, data warehousing, engineering services, and custom database and application development. VSolvit is an award winning WOSB, CA CDB, MBE, WBE, and CMMI Level 3 certified company. We offer a customizable health benefits program that best meets the needs of its employees. Offering may include: medical, dental, and vision insurance, life insurance, long and short-term disability and other insurance products, Health Savings Account, Flexible Spending Account, 401K Retirement Plan options, Tuition Reimbursement, and assorted voluntary benefits. Our goal is to grow together and enjoy the work that we do as a team. VSolvit LLC is an Equal Opportunity/Affirmative Action employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, national origin, protected veteran status, or disability status. |