Senior Information Systems Security Engineer (RMF Lead)

ASEC, Inc.

$160K — $180K *
Aerospace & Defense
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Cybersecurity, Information Systems, Computer Science, Engineering, or similar field; ten years of DoD cybersecurity experience.
  • Five years leading Risk Management Framework (RMF) activities per DoDI 8510.01.
  • Experience with NIST SP 800-53, DISA STIGs, ACAS, and POA&M remediation.
  • Proven track record in designing cybersecurity solutions for complex DoD systems.
  • Experience collaborating with Government Authorizing Officials (AOs) and engineering teams for compliance.

Responsibilities

  • Lead cybersecurity engineering for Live, Virtual, and Constructive (LVC) training systems.
  • Integrate security requirements in system development.
  • Develop security architectures that align with operational needs and DoD standards.
  • Conduct security design reviews and offer technical guidance.
  • Oversee all RMF activities for systems and manage RMF packages effectively.
  • Coordinate with security stakeholders and resolve cybersecurity issues.
  • Ensure compliance with various cybersecurity policies and guidelines.

Benefits

  • Up to 25% annual travel for professional engagement.
  • Opportunities to work on advanced cybersecurity initiatives in a defense context.
  • A collaborative work environment emphasizing teamwork and innovation.
  • Potential for professional development in cybersecurity fields.
  • Involved in securing systems crucial for national defense and military readiness.
Full Job Description
Job Type

Full-time

Description

What You'll Do:

As the Senior Information Systems Security Engineer (ISSE)/RMF Lead, you will serve as the cybersecurity authority supporting advanced Live, Virtual, and Constructive (LVC) training environments that prepare Navy and coalition forces for real-world combat operations. You will lead the integration of cybersecurity requirements into mission systems, networks, and simulation environments while overseeing all Risk Management Framework (RMF) activities required to maintain operational authorization. Working across engineering, network, and program teams, you will help ensure the secure delivery of realistic, high-fidelity training capabilities that enable warfighter readiness against emerging and advanced threats.

This position will be based at the NAS Oceana Dam Neck Annex in Virginia Beach, VA.

Key Responsibilities:
  • Lead cybersecurity engineering efforts across Live, Virtual, and Constructive (LVC) training systems and supporting infrastructure.
  • Integrate security requirements throughout the system development lifecycle.
  • Develop security architectures that support operational requirements while meeting DoD cybersecurity standards.
  • Conduct security design reviews and provide technical guidance to engineering teams.
  • Lead all Risk Management Framework (RMF) activities for assigned systems and enclaves.
  • Develop and maintain RMF packages, including System Security Plans (SSPs), security assessments, and authorization artifacts.
  • Coordinate with Government Authorizing Officials (AOs), Security Control Assessors (SCAs), and cybersecurity stakeholders.
  • Track and resolve cybersecurity findings and authorization conditions.
  • Ensure compliance with DoDI 8510.01 (RMF), NIST SP 800-53, DoD Cyber, Workforce requirements, DISA Security Technical Implementation Guides (STIGs), and Navy and NAVAIR cybersecurity policies
  • Ensure secure integration between operational systems, simulators, and external interfaces.
  • Review ACAS, vulnerability scans, and security assessment results.
  • Prioritize and coordinate remediation activities across engineering, network, and system administration teams.
  • Track Plans of Action and Milestones (POA&Ms) through closure.
  • Assess cybersecurity risks associated with distributed training events.
  • Evaluate security implications of integrating live platforms, simulators, and threat-representation systems.
  • Support cross-domain and multi-level security solutions where required.
  • Ensure training systems can emulate realistic threats without introducing unacceptable cybersecurity risk.
  • Coordinate cybersecurity requirements for coalition and joint interoperability events.
  • This position may require up to 25% annual travel.

This description outlines the general nature and scope of the role. Additional duties may be assigned as necessary.

Requirements

What You'll Bring:
  • Bachelor's degree in Cybersecurity, Information Systems, Computer Science, Engineering, or a related technical field and ten (10) years of relevant DoD cybersecurity experience. Additional directly related experience may be substituted for a degree where permitted.
  • Minimum of five (5) years of experience leading Risk Management Framework (RMF) activities in accordance with DoDI 8510.01, including development of SSPs, security assessments, authorization packages, and ATO documentation.
  • Demonstrated experience implementing and maintaining cybersecurity controls in accordance with NIST SP 800-53, DISA STIGs, ACAS vulnerability management, and POA&M remediation.
  • Experience designing and integrating cybersecurity solutions for complex DoD information systems, networks, or mission systems throughout the system development lifecycle.
  • Experience coordinating with Government Authorizing Officials (AOs), Security Control Assessors (SCAs), engineering teams, and system administrators to achieve and maintain cybersecurity compliance and system authorization.
  • Experience supporting Navy, NAVAIR, or other DoD programs involving classified information systems, distributed networks, or Live, Virtual, and Constructive (LVC) training environments is highly desired.

Certification Requirements:
  • Candidates must hold a current IAM-III certification (e.g., CISM, CISSP, or GSLC) as defined by DoD 8570.01-M. Please upload copies of any relevant IT certifications as part of your application. These documents help us verify qualifications during the initial screening process.

Equally Important:
  • Ability to build positive, collaborative relationships across teams and with external partners.
  • Effective communicator with strong verbal and written skills.
  • Proactive, self-directed work style with the ability to operate independently.
  • Analytical thinker with proven problem-solving capabilities.
  • Highly organized, with the ability to balance competing priorities in a fast-paced environment.

Security Clearance Requirement:
  • This position requires U.S. citizenship and an active DoD Top Secret clearance. Selected candidate will be subject to a government security investigation and must meet eligibility requirements for access to classified information.

Salary Range:
  • The anticipated annual salary range for this position is $160,000 - $180,000, commensurate with an individual's experience, qualifications, and skill set. ASEC is committed to providing fair and equitable compensation.

Similar Jobs

More Jobs at ASEC, Inc.

More Aerospace & Defense Jobs

Find similar Senior Information Systems Security Engineer (RMF Lead) jobs: