Information Systems Security Engineer

GovCIO is currently hiring for a Information Systems Security Engineer (ISSE) to perform tasks related to RMF, STIG implementation, ACAS, and other cyber-security activities. This position will be located in San Antonio, TX and will be an onsite only position.

Designs and implements information assurance and security engineering systems with requirements of continuity, operations security, cryptography, forensics, regulatory compliance, physical security analysis (including facilities analysis, and security management). Assesses and mitigates system security threats and risks throughout the program life cycle. Validates system security requirements definition and analysis. Establishes system security designs. Implements security designs in hardware, software, data, and procedures. Verifies security requirements; performs system certification and accreditation planning and testing and liaison activities. Supports secure systems operations and maintenance.

• Participates with the client in the strategic design process to translate security and requirements into technical designs.
• Configures and validates secure systems and tests security products and systems to detect security weakness; performs network scanning and vulnerability analysis.
• Ensures that the appropriate security features and safeguards have been implemented on all information systems as required by DoD/IC policy and directives, and industry best practices.
• Performs defense device system installation, configuration maintenance, account maintenance, signature maintenance, patch management, and troubleshooting of all implemented, maintained, and deployed systems.
• Provides security certification test and evaluation of assets, vulnerability management and response, security assessments, customer support and provides guidance on security issues.
• The Cyber Security Analyst will provide technical expertise in the area of Compliance Reporting and Risk Management Framework (RMF)
• Understanding of the system development lifecycle. Ability to provide guidance to government representatives.
• Experience implementing security controls
• Experience executing STIGs and compliance standards
• Manage Assured Compliance Assessment Solution (ACAS) in a development environment. Maintain policies and initiate scans.
• Collaborate with system engineers to mitigate vulnerabilities discovered in scans
• Maintain Plan of Action and Milestones (POA&M)
• Compile information and provide support for continuous monitoring, security control assessments, Authorization to Connect (ATC) and Authorization to Operate (ATO)
• Coordinate with stakeholders to obtain, update, organize, maintain, and track required RMF documentation

High School with 9+ years (or commensurate experience)

Required Skills and Experience

• Clearance Required: Active TS/SCI
• Strong understanding of RMF workflow tools like eMASS or Xacta
• Strong working knowledge of programs working within Air Force network rules and guides
• Expert understanding of STIGs, STIG Checklists, STIG Implementation, and POA&M for non-compliance
• Experience with network management tools, network engineering principles, network analysis
• Complete understanding of Assessment & Authorization process
• Possess an expert understanding of current computer security requirement and compliance
• Expert ability to maintain System Security and Risk Mitigation plans
• Excellent written/verbal communications skills
• DoD 8570.01 IAT Level II (CCNA-Security, CySa+, GICSP, Sec+CE, CND, SSCP)

Preferred Skills and Experience

• DoD 8570.01 CSSP Analyst (CEH, CFR, CySa+, GCIA, etc.)
• Experience with Tenable, Tanium, Splunk, Trellix, ServiceNow, LogRhythm

#DSG #NSS #TMK

GovCIO is a team of transformers--people who are passionate about transforming government IT. Every day, we make a positive impact by delivering innovative IT services and solutions that improve how government agencies operate and serve our citizens.

But we can't do it alone. We need great people to help us do great things - for our customers, our culture, and our ability to attract other great people. We are changing the face of government IT and building a workforce that fuels this mission. Are you ready to be a transformer?

We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, or status as a protected veteran. EOE, including disability/vets.

Posted Pay Range

The posted pay range, if referenced, reflects the range expected for this position at the commencement of employment, however, base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, education, experience, and internal equity. The total compensation package for this position may also include other compensation elements, to be discussed during the hiring process. If hired, employee will be in an “at-will position” and the GovCIO reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, GovCIO or individual department/team performance, and market factors.