Information Systems Security Engineer (ISSE) - ...

OverviewSeeking high-level IT Professionals to provide cyber security and security engineering services including system security engineering, cybersecurity risk assessments, and security architecture support. The ISSE shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established cybersecurity standards and regulations and recommended mitigation strategies.Roles and ResponsibilitiesParticipate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave environmentsSupport security planning, assessment, risk analysis, and risk managementExperience with Risk Management Framework (RMF), NIST SP 800-53, Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance CheckerPrepare and review program documentation to include Risk Assessment Reports, Accreditation Packages, and security policy guidesContinuous Monitoring – Plan of Action & Milestones (POAMs) – Working with engineers to resolve formal security findings from the security assessment and/or the scans and maintain the POAMKnowledge of SIPR and JWICS Assessment & Authorization (A&A) processDocument the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security AccreditationInteract with the customer and other project team membersIdentify overall security requirements for the proper handling of Government dataDevelop and implement security designs for new or existing network system(s). Ensure that the design of hardware, operating systems, and software applications adequately address cybersecurity requirements for the IS and Network EnvironmentIdentify information protection needs for an IS and Network EnvironmentDefine IS and Network Environment security requirements in accordance with applicable cybersecurity requirementsDevelop approaches to mitigate IS and Network Environment vulnerabilities and recommend changes to network or network system components as neededWork closely with system administrators to validate patching, AV definitions and other security tools are updated/not vulnerableReview requests for software installation and conduct technical risk assessment on implementation of the softwareApplies system security engineering expertise in one or more of the following:Building, deploying and patching HBSS Windows and ACAS RedHat Linux 7.9 and 8 serversBuilding, maintaining, and patching all ePO, Security Center, and Nessus serversProviding Security Center accounts for Vulnerability Managers to scan devices within ACASExperience with ACAS scan results and how to remediate vulnerability findingsKnowledge of the process of obtaining license for all HBSS ePO’s and Tenable Security CentersExpertise in the process of obtaining HBSS and ACAS kick start ISO’s from DISAExtensive knowledge of building virtual servers, deploying and patching all McAfee modules via the ePO, configuring McAfee policies for each environmentSTIG’ing HBSS Windows OS, McAfee policies to comply with benchmarks (Not reviewing or confirming), STIG’ing ACAS RHEL serversAbility to Run SCAP scans on Windows and RHEL serversDisplays knowledge of updating RedHat 7.9 and 8 rpm’s as they are releasedSetup RedHat yum local rpm repositories to patch offline ACAS serversDeploying Rogue sensors on each subnet, Identifying Rogue subnets and rogue endpointsAble to troubleshoot Security Center and Nessus scanner issuesRequired QualificationsQualified candidates must possess a TS//SCI security clearanceSecurity+7+ years of experience in understanding of all aspects of systems engineering, including design and architectureDemonstrated capability to identify security risks throughout information system network structures to include the Operating Systems, hardware, and various data transfer protocolsEffective communication and presentation skills (i.e., ability to present ideas effectively in formal and informal situations in group and individual settings)Strong planning, organizational, and time management skills (i.e., ability to effectively plan, organize, and prioritize work, and to control and follow up to assure work completion)Demonstrated initiative (i.e. initiate appropriate action without being directed) and ability to work independentlyStrong interpersonal skills (e.g., ability to work effectively on teams, communicate effectively, work/interact effectively and amicably with people from diverse backgrounds and cultures and with diverse personal attributes)Preferred QualificationsExperience with eMASSExperience with XactaAbility to Run SCAP scans on Windows and RHEL serverKnowledge of the process of obtaining licenses for all HBSS ePO’s and Tenable Security CentersThrough understanding of Information Security principles and Risk Assessment techniquesSupport the Risk Management Framework (RMF) process using applicable toolsEEO EmployerApex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex, age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178. #J-18808-Ljbffr

Created: 2025-09-17