Information Systems Security Engineer 3

Salary Range: 193000 to 216000 (Currency: USD) (Pay period: per-year-salary)

Responsibilities

• Perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies.
• Validate and verify system security requirements definitions and analysis, and establish system security designs.
• Design, develop, implement, and/or integrate IA and security systems and system components, including those for networking, computing, and enclave environments, including those with multiple enclaves and differing data protection/classification requirements.
• Support the building of security architectures.
• Enforce the design and implementation of trusted relations among external systems and architectures.
• Assess and mitigate system security threats/risks throughout the program life cycle.

Apply system security engineering expertise in one or more of the following:

• System security design process
• Engineering life cycle
• Information domain
• Cross-domain solutions
• COTS and GOTS cryptography
• Identification, authentication, and authorization
• System integration
• Risk management
• Intrusion detection
• Contingency planning
• Incident handling
• Configuration control and change management
• Auditing
• Certification and accreditation processes

Minimum Qualifications

• 20 years of experience as an Information Systems Security Engineer
• Versed in principles of lA, including confidentiality, integrity, non-repudiation, availability, and access control
• Experience interacting directly with the customer and other project team members
• Experience generating system-level solutions to resolve security requirements
• Experience developing functional and secure system architectural design plans
• A Bachelor's Degree in Computer Science, Information Assurance, or Information Security System Engineering is required.
• A Master's Degree in Computer Science, Information Assurance, or Information Security System Engineering may be substituted for two (2) years of experience.
• Four (4) years of additional ISSE experience may be substituted for a Bachelor's degree.
• Experience supporting security authorization activities in compliance with:
• NSA/CSS Information System Certification and Accreditation Process (NISCAP)
• DoD Risk Management Framework (RMF)
• NIST Risk Management Framework (RMF)
• NSA/CSS business processes for security engineering.
• Experience in either one of the following: security engineering, system/architecture modernization, sensing and monitor, crypto modernization, and threat intelligence. 

Certifications

• DoD 8570 compliance w/IASAE Level 3 required
• CISSP-ISSEP required

Preferred Qualifications

• Experience with risk assessments, security architect solutions, data visualizations, project management, and strong verbal and written communication are preferred.