ARSIEM is currently looking for an
Information Systems Security Engineer 3 to participate as a primary security engineering representative on engineering teams for the design, development, implementation and/or integration of secure networking, computing, and enclave environments. This position will support one of our Government clients in Columbia, MD.
Responsibilities- Perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies.
- Validate and verify system security requirements definitions and analysis, and establish system security designs.
- Design, develop, implement, and/or integrate IA and security systems and system components, including those for networking, computing, and enclave environments, including those with multiple enclaves and differing data protection/classification requirements.
- Support the building of security architectures.
- Enforce the design and implementation of trusted relations among external systems and architectures.
- Assess and mitigate system security threats/risks throughout the program life cycle.
Apply system security engineering expertise in one or more of the following:- System security design process
- Engineering life cycle
- Information domain
- Cross-domain solutions
- COTS and GOTS cryptography
- Identification, authentication, and authorization
- System integration
- Risk management
- Intrusion detection
- Contingency planning
- Incident handling
- Configuration control and change management
- Auditing
- Certification and accreditation processes
Minimum Qualifications- 20 years of experience as an Information Systems Security Engineer
- Versed in principles of lA, including confidentiality, integrity, non-repudiation, availability, and access control
- Experience interacting directly with the customer and other project team members
- Experience generating system-level solutions to resolve security requirements
- Experience developing functional and secure system architectural design plans
- A Bachelor's Degree in Computer Science, Information Assurance, or Information Security System Engineering is required.
- A Master's Degree in Computer Science, Information Assurance, or Information Security System Engineering may be substituted for two (2) years of experience.
- Four (4) years of additional ISSE experience may be substituted for a Bachelor's degree.
- Experience supporting security authorization activities in compliance with:
- NSA/CSS Information System Certification and Accreditation Process (NISCAP)
- DoD Risk Management Framework (RMF)
- NIST Risk Management Framework (RMF)
- NSA/CSS business processes for security engineering.
- Experience in either one of the following: security engineering, system/architecture modernization, sensing and monitor, crypto modernization, and threat intelligence.
Certifications- DoD 8570 compliance w/IASAE Level 3 required
- CISSP-ISSEP required
Preferred Qualifications- Experience with risk assessments, security architect solutions, data visualizations, project management, and strong verbal and written communication are preferred.
$193,000 - $216,000 a year