Sr. Information System Security Engineer (ISSE)

DCS Corp
Fort Belvoir, VA
Jan 05, 2022
Feb 09, 2022
Full Time
COVID-19 continues to significantly impact our employees, families and communities. With the health and safety of employee as our top priority, DCS is taking action to address the increased risk and uncertainty COVID-19 variants pose in the workplace while ensuring we meet our commitments to national security.

To uphold safety for all employees, we will continue to request vaccination status for all DCS employees, including new hires. All current and newly hired employees who are unvaccinated will be required to adhere to safety protocols applicable to their worksite.

The Sr. Information System Security Engineer (ISSE) will be responsible for implementing and executing the Risk Management Framework (RMF) process for the customer's products.

Essential Job Functions:

Must have skills, knowledge, and experiences in implementing and executing the Risk Management Framework (RMF) process.

Extensive experience developing cyber security artifacts, implementing STIGs, as well as, conducting Plan of Action & Milestone validation in support of RMF Assessment and Authorization (A&A) requirements, and Federal Information Security Modernization Act (FISMA) reporting.

Perform systems configuration reviews, and other activities to identify potential risks and vulnerabilities, in on premise and Cloud environments.

Report all actions, findings, and recommendations as required to the Assistant Product Manager and PdM CAD leadership team.

Experience with operating systems such as REHL or LUIX. Inform security assessments (security audits or security reviews), to ensure that necessary Security Controls are integrated into the system design architectures and IT Projects. Lead Teams in conducting self-assessments, utilizing applicable approved NSA, DISA, and CI tools for reporting findings and recommendations for secure engineering mitigation efforts.

Conduct software testing and secure code reviews.

Verify security controls and security requirements are applied IAW FIPS -190, DISA, NSA, NIST, DoD, and US Cyber Command directives, polices, and all other applicable Cyber Security regulations and guidance documents.

ISSE must have a good working knowledge of DevSecOps, Agile, Big Data Platforms, Data Analytics, and Cloud computing to include cloud adoption plans, cloud application design, cloud deployment, and cloud management and monitoring and applying RMF principles and requirements to Cloud applications and tools.

Required Skills:

Due to the sensitivity of customer related requirements, U.S. Citizenship.

Must have Bachelor's and 12 years of relevant experience.

TS/SCI clearance is required.

Must have the following certifications: DoD 8570: IASAE Level II/ III, or CASP, or CISSP, or CSSLP, or CISSP-ISSAP, or CISSP-ISSEP; RMF in the Cloud TNG; Certificate of Cloud Auditing Knowledge (CCAK) or equivalent.

Similar jobs