Information Systems Security Engineer

BBBH16662_1711433497
  • Up to £120.00 per annum
  • Boston, Massachusetts
  • Permanent

In the realm of classified cybersecurity compliance, an exciting opportunity has emerged for an Information Systems Security Engineer (ISSE) to take center stage within our dynamic team. As a key contributor, you'll collaborate with a diverse group of cybersecurity and information assurance professionals, including ISSMs, ISSOs, CPSOs, FSOs, and System Administrators. Together, we tackle NIST compliance and navigate the intricacies of configuration change management.

About the Role

As an Information Systems Security Engineer, your role will be dynamic and impactful. You'll interface and collaborate with various cybersecurity and information assurance professionals on NIST compliance and configuration change management. Key responsibilities include:

Reviewing and managing IA Vulnerability Alerts (IAVA) such as US-CERT, implementing overall remediation strategies.

Conducting vulnerability and compliance scans of Information Systems to ensure robust security measures.

Supporting the development of Risk Management Framework (RMF) documentation and control validation testing for Authority to Operate (ATO) accreditations.

Contributing to the development of cybersecurity requirements, design, and architecture.

Implementing Information Assurance and Information Security protections in program development and execution environments.

Enforcing security controls for networking devices, databases, operating systems, and hardware/software components.

Assisting ISSMs and ISSOs in monitoring and resolving Plan of Action and Milestones (POA&M) to mitigate system vulnerabilities.

Conducting reviews/technical inspections to identify and mitigate potential security weaknesses.

Supporting completion of Continuous Monitoring requirements in accordance with RMF and NIST SP800-53 requirements.

Performing other tasks as assigned by manager/supervisor.

What We Can Offer You

Joining our team opens doors to numerous opportunities for professional growth and development. As an Information Systems Security Engineer, you'll benefit from continuous training programs, ensuring you stay ahead in the ever-evolving field of cybersecurity. We offer a collaborative environment where your skills are valued, providing a platform for meaningful contributions to our collective success.

Requirements

To thrive in this role, you'll need:

An active Top Secret security clearance with the ability to obtain SAP and SCI access.

Two to four years of technical (hands-on) experience related to Information Assurance/Cyber Engineering.

DoD 8570 IAM Level III certification or the ability to obtain within six months of hire.

Experience with NIST SP800-53 control implementation and assessment.

Familiarity with the DCSA Authorization and Assessment Process Manual (DAAPM) and the Joint Special Access Implementation Guide (JSIG).

Proficiency in configuring, certifying, and auditing/analyzing Windows/Linux operating systems and system virtualization.

Experience with managing and implementing DISA STIGs and benchmarks in various operating systems (Windows, Linux, Ubuntu).

Familiarity with various IA vulnerability/compliance scanning tools (e.g., NMap, ACAS, Nessus, SCAP).

Experience with maintaining/managing SIEM and centralized auditing tools (e.g., Splunk, PowerStrux).

Familiarity with Microsoft Deployment Toolkit (MDT) and DISA Secure Host Baseline Framework.

Strong attention to detail, self-motivation, and excellent communication skills.

Ability to effectively prioritize multiple projects and work collaboratively in a team environment, adapting to changing project priorities.

If you're ready to make a significant impact in the world of cybersecurity, this Information Systems Security Engineer role is your gateway to a challenging yet rewarding career. Apply your expertise and join us on the front lines of securing digital landscapes.

Apply for this role