Information Systems Security Engineer (ISSE)

Peraton

$104K — $166K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 5 years of experience with a BS/BA or 3 years with MS/MA; 9 years of experience may replace BS degree if qualified.
  • Active Top Secret clearance with SCI eligibility required.
  • Strong networking background (TCP/IP, firewalls, VPNs) and expertise in cloud security (AWS/Azure) and DevSecOps.
  • Deep understanding of NIST SP 800-161, NIST RMF, FedRAMP, and cybersecurity compliance (STIGs).
  • Hands-on experience with security tools including Tenable Nessus, CyberArk, and Splunk Enterprise.
  • Proficient in scripting and automation using PowerShell, Python, Bash, and Ansible.
  • Experience leading projects and mentoring junior ISSEs.

Responsibilities

  • Design and maintain security architectures based on NIST RMF and DoD STIGs.
  • Conduct security engineering across the system development lifecycle (SDLC).
  • Implement vulnerability management processes leveraging tools like Tenable Nessus and Qualys.
  • Integrate cybersecurity requirements across diverse platforms including cloud and virtualization.
  • Support incident response by analyzing logs and alerts with Splunk Enterprise.
  • Develop automation scripts to enhance security monitoring and compliance tasks.
  • Collaborate with teams to rectify security findings and ensure secure configurations.

Benefits

  • Comprehensive health benefits package.
  • 401(k) plan with company matching.
  • Paid time off and holidays.
  • Flexible work environment and potential for remote work.
  • Professional development opportunities and training programs.
Full Job Description
Responsibilities

Peraton is seeking an Information Systems Security Engineer (ISSE) to support our customer onsite in Washington D.C. Responsibilities include:

  • Design, implement, and maintain enterprise security architectures aligned with NIST RMF, DoD STIGs, CIS benchmarks, and organizational cybersecurity policies.
  • Perform security engineering activities across system development lifecycle (SDLC), including requirements analysis, system design reviews, security testing, and accreditation support.
  • Implement vulnerability management processes utilizing Tenable Nessus, ACAS, and Qualys to identify, assess, and remediate system vulnerabilities.
  • Integrate cybersecurity requirements into Windows and Linux server environments, cloud infrastructure, virtualization platforms, and containerized applications.
  • Support incident response and forensic investigations by analyzing security logs, SIEM alerts, network traffic, and endpoint telemetry using Splunk Enterprise.
  • Develop automation scripts using PowerShell, Bash, and Python to streamline vulnerability remediation, account auditing, compliance reporting, and security monitoring tasks.
  • Collaborate with system administrators, network engineers, ISSOs, and application teams to remediate security findings and implement secure configuration baselines.
  • Perform security impact analysis for system changes, software deployments, and infrastructure upgrades to ensure continued compliance and operational security.
  • Engineer endpoint protection and hardening solutions utilizing Trellix ePO – On-prem, host-based firewalls, and application whitelisting technologies.
  • Evaluate and implemented cybersecurity tools and technologies to improve system security posture, continuous monitoring, and threat detection capabilities.
  • Produce technical security documentation, architecture diagrams, standard operating procedures (SOPs), and executive-level risk assessment reports.
  • Experience administrating, configuring, and troubleshooting core modules such as Enterprise Password Vault (EPV), Password Vault Web Access (PVWA), Central Policy Manager (CPM), and Privileged Session Manager (PSM) in CyberArk.
Qualifications
  • 5 years with BS/BA; 3 years with MS/MA; 9 years in lieu of a BS degree may be considered.
  • Must possess an active Top Secret with SCI Eligibility
  • Strong background in networking (TCP/IP, firewalls, VPNs), cloud security (AWS/Azure), Kubernetes, and DevSecOps.
  • Deep understanding of NIST SP 800-161, NIST RMF, FedRAMP, Common Criteria, ATO package development, and cybersecurity compliance (STIGs).
  • Hands-on experience managing and deploying Tenable Nessus, CyberArk, Trellix, Splunk Enterprise, VMware vSphere, GitLab, Microsoft Windows Server, Red Hat Enterprise Linux and Ubuntu Linux
  • Experience with scripting and automation with Powershell, Python, Bash and Ansible
  • Proven experience in leading projects and mentoring junior ISSE's.
  • Present technical briefings to leadership.
  • Must have a current DoD 8570.1-M IAT Level III certification (SecurityX (CASP), GCIH, CISA, CISSP)
Target Salary Range$104,000 - $166,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individuals experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.

Similar Jobs

More Jobs at Peraton

More Information Technology Jobs

Find similar Information Systems Security Engineer (ISSE) jobs: