Jr Information System Security Engineer (ISSE)

Peraton

$112K — $179K *
Technical Services
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 2 years of experience with a BS/BA; 0 years with MS/MA; or 6 years without a degree
  • Active Top Secret clearance with SCI eligibility
  • DoD 8570.1-M/8140 IAT Level III certification (like SecurityX, GCIH, CISA, CISSP)
  • Experience in networking (TCP/IP, firewalls, VPNs), cloud security (AWS/Azure), and DevSecOps
  • Knowledge of NIST guidelines, cybersecurity compliance, and accreditation processes
  • Proficiency with security tools like Tenable Nessus, CyberArk, and Splunk Enterprise
  • Scripting experience in PowerShell, Python, and Bash

Responsibilities

  • Design, implement, and maintain enterprise security architecture based on relevant standards and policies.
  • Perform security engineering across the system development lifecycle, including security testing and accreditation support.
  • Implement processes for identifying and remediating system vulnerabilities using various scanning tools.
  • Integrate security requirements into diverse IT environments including servers and cloud platforms.
  • Support incident response by analyzing security data from multiple sources.
  • Develop automation scripts to enhance security operations and compliance tasks.
  • Collaborate with technical teams to address security findings and ensure secure configurations.

Benefits

  • Health, dental, and vision insurance
  • 401(k) retirement plan options
  • Generous paid time off and holidays
  • Continuous professional development and training opportunities
  • Opportunities for career advancement within a reputable organization
Full Job Description
Responsibilities

Peraton is seeking an Information Systems Security Engineer (ISSE) to support our customer onsite in Washington D.C. Responsibilities include:

 

  • Design, implement, and maintain enterprise security architecture aligned with NIST RMF, DoD STIGs, CIS benchmarks, and organizational cybersecurity policies.
  • Perform security engineering activities across system development lifecycle (SDLC), including requirements analysis, system design reviews, security testing, and accreditation support.
  • Implement vulnerability management processes utilizing Tenable Nessus, ACAS, and Qualys to identify, assess, and remediate system vulnerabilities.
  • Integrate cybersecurity requirements into Windows and Linux server environments, cloud infrastructure, virtualization platforms, and containerized applications.
  • Support incident response and forensic investigations by analyzing security logs, SIEM alerts, network traffic, and endpoint telemetry using Splunk Enterprise.
  • Develop automation scripts using PowerShell, Bash, and Python to streamline vulnerability remediation, account auditing, compliance reporting, and security monitoring tasks.
  • Collaborate with system administrators, network engineers, ISSOs, and application teams to remediate security findings and implement secure configuration baselines.
  • Perform security impact analysis for system changes, software deployments, and infrastructure upgrades to ensure continued compliance and operational security.
  • Engineer endpoint protection and hardening solutions utilizing Trellix ePO – On-prem, host-based firewalls, and application whitelisting technologies.
  • Evaluate and implement cybersecurity tools and technologies to improve system security posture, continuous monitoring, and threat detection capabilities.
  • Produce technical security documentation, architecture diagrams, standard operating procedures (SOPs), and executive-level risk assessment reports.
  • Experience administrating, configuring, and troubleshooting core modules such as Enterprise Password Vault (EPV), Password Vault Web Access (PVWA), Central Policy Manager (CPM), and Privileged Session Manager (PSM) in CyberArk.
  • Monitors, analyzes, and detects cyber events and incidents within information systems and networks under general supervision.
  • Assists with integrated, dynamic cyber defense, coordinates and maintains security toolsets to support organizations’ continuous monitoring and ongoing authorization programs.
  • Establishes a framework by which cyber risk can be measured and quantified in the marketplace.
  • Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates. Implements security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation. Verifies security systems by developing and implementing test scripts.
  • Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs. Responsible for the design, development, implementation, and integration of a DoD IA architectures, systems, or system components for use within computing, network, and enclave environments.
  • Ensures that the architecture and design of development and operational systems are functional and secure.
  • This includes designs for program of record systems and special purpose processing nodes with platform IT interconnectivity.
Qualifications
  • 2 years with BS/BA; 0 years with MS/MA; 6 years with no degree
  • Must possess an active Top Secret with SCI Eligibility
  • Must be DoD 8570.1-M/8140  IAT Level III certification (SecurityX (CASP), GCIH, CISA, CISSP) compliant
  • Experience with networking (TCP/IP, firewalls, VPNs), cloud security (AWS/Azure), Kubernetes, and DevSecOps.
  • Understanding of NIST SP 800-161, NIST RMF, FedRAMP, Common Criteria, ATO package development, and cybersecurity compliance (STIGs).
  • Experience with using and deploying Tenable Nessus, CyberArk, Trellix, Splunk Enterprise, VMware vSphere, GitLab, Microsoft Windows Server, Red Hat Enterprise Linux and Ubuntu Linux
  • Experience with scripting and automation with Powershell, Python, Bash and Ansible
Target Salary Range$112,000 - $179,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individual’s experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.

Similar Jobs

More Jobs at Peraton

More Technical Services Jobs

Find similar Jr Information System Security Engineer (ISSE) jobs: