Transform technology into opportunity as a Cybersecurity Systems Engineer/Information Systems Security Engineer (ISSE)

with GDIT. A career in enterprise IT means connecting and enhancing the systems that matter most. At GDIT you’ll be at the forefront of innovation and play a meaningful part in improving how agencies operate. At GDIT, people are our differentiator. As a Cybersecurity Systems Engineer/Information Systems Security Engineer (ISSE) you will help ensure today is safe and tomorrow is smarter.

HOW A CYBERSECURITY SYSTEMS ENGINEER/INFORMATION SYSTEMS A SECURITY ENGINEER (ISSE) WILL MAKE AN IMPACT:

• Lead Accreditation and Authorization (A&A) reviews by Group level ISSMs and Security Controls Assessors (SCA)

• Documents the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation for the various Assessment and Authorization (A&A) efforts

• Document and obtain a general understanding of the architecture being developed or that was developed for each project in order to write the Systems Security Plans (SSP) / CONOPS

• Gather the information by working with various systems owners, project managers, and engineering team members in order to write various additional A&A related documents such as Contingency Plan (CP), General User Guide (GUG), Privileged User Guide (PUG), Standard Operating Procedures (SOP' s), etc.

• Document the Plans of Actions and Milestones (POA&Ms) implementation responses or mitigations, as well as provide all required artifacts (i.e. evidence gathering from the system owners, PMs, and engineering teams)

• Coordinating with various contractor and customer personnel to obtain the A&A content, as well as working with various customer security organizations to navigate the customer's A&A process in order to achieve Authority to Develop (A TD), Interim Authority to Test (IA TT), and Authority to Operate (ATO) for each of the primary and secondary assigned systems

• Monitor each of the various A&A projects within the customer's A&A process and be able to fluently discuss the status at all levels

• Support audit liaison activities, and compliance oversight activities to strengthen the security program and promote compliance with the Risk Management Framework (RMF)

• Perform technical content reviews and edits as part of the document updates as part of the Annual ISCM and OA Strategy Plan Update

• Conduct a technical review and update of the control volatility section of the plan considering emerging threats, changes to the agency security posture, the latest IC guidance, agency policy, federal laws, standards, and guidance, et., and based on information profile (e.g., High Value Asset (HVA), TS (SCI), Secret, etc.)

• Provide audit liaison support for internal and external audits and data calls for external reporting. Document and provide concise and actionable recommendations and process improvements reports

WHAT YOU’LL NEED TO SUCCEED:

• Required Education and Experience: Technical Training, Certification(s) or Degree + 10 years

• Certifications: DoD Manual 8570.01-M at the Information Assurance System Architects & Engineer (IASAE) Level II role

• Security Clearance Level: TS/SCI clearance and ability to obtain and maintain a Polygraph

• Location: On Customer Site