Modern Technology Solutions Inc
Information Systems Security Engineer (ISSE)
Modern Technology Solutions Inc, Hampton, Virginia, United States, 23661
Overview
Information Systems Security Engineer (ISSE) role at Modern Technology Solutions, Inc. (MTSI). The ISSE is primarily responsible for conducting information system security engineering activities with a focus on the lifecycle of current systems and future requirement scoping. The position will collect and process information security requirements and ensure that the requirements are integrated into information systems through security architecting, design, development, and configuration. The ISSE is part of the development team designing and developing organizational information systems or upgrading legacy systems. The ISSE applies best practices when implementing security requirements within an information system including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques. This role works within Special Access Programs (SAPs) supporting DoD agencies, such as HQ Air Force, OSD, and Military Compartments, and provides day-to-day support for Collateral, Sensitive Compartmented Information (SCI) and SAP activities. Responsibilities Perform oversight of the development, implementation and evaluation of information system security program policy; emphasis on integration of existing SAP network infrastructures Perform analysis of network security based on the Risk Management Framework (RMF) with emphasis on the Joint Special Access Program Implementation Guide (JSIG) authorization process Provide expert support, research and analysis of exceptionally complex problems and processes Serve as technical expert to the Cybersecurity Assessment Program, providing technical direction, interpretation and alternatives to complex problems Think independently and demonstrate exceptional written and oral communications; apply advanced technical principles, theories, and concepts Contribute to the development of new principles, concepts, and approaches Work on unusually complex technical problems and provide highly innovative and ingenious solutions Recommend cybersecurity software tools and assist in developing tool requirements and selection criteria, including product-specific STIGs from applicable DISA SRGs Lead technical teams in implementing predetermined long-range goals Support customer and SAP community IA working groups and participate in SSE IPT reviews Provide expert-level consultation and technical services on all aspects of information security Review ISSE-related designs and provide security compliance recommendations Develop and provide IA risk management recommendations to the customer Provide ISSE support for mission and training systems design and development Assist with development and maintenance of the Program Protection Plan Assist with site activation activities and design reviews Represent the customer in ISSE-related working groups, advisory groups and advisory council meetings Maintain a strong background in patch/configuration management, DevOps, and tier 3 support Assist the team to design, integrate, and implement JSIG/RMF Continuous Monitoring tools and processes Integrate COTS and GOTS products to collect, display and remediate a variety of automated system security and operations/performance metrics Perform security assessments of servers, network devices and security appliances Develop improvements to security assessments for accuracy and efficiency Integrate ancillary monitoring tools with the enterprise SIEM and create/tailor complex event alarms, rules and summary reports Write and execute cybersecurity test procedures for validation of control compliance Monitor and analyze outputs of cybersecurity tools for reportable security incidents and residual risk Analyze technical risk of emerging cybersecurity tools and processes Work as part of a security incident response team as needed Build O&M checklists to maintain the service and develop TTPs and SOPs for service checklists Integrate and develop new techniques to improve confidentiality, integrity and availability for networks and systems operating at various classification levels Demonstrate advanced technical competency in platforms including Microsoft Windows Server, Active Directory, Red Hat Enterprise Linux servers, hypervisors, enterprise networking and security tools Utilize toolkits and SIEMs (e.g., LogRhythm), vulnerability scanners (e.g., ACAS/Nessus/SCAP), RBAC concepts, and related security technologies
Qualifications and Experience
10-12 years of related experience SAP experience preferred Prior performance in roles such as ISSO, ISSM, SCA, or SAP IT Technical Director Bachelors degree in a related discipline or equivalent experience (4 years) Expert knowledge of DoD, national and service/agency security policy, manuals and standards; ability to work in a dynamic environment with DoD personnel and industry partners
Certifications
Must meet DoD Directive 8570.01-M requirements for Information Assurance Manager Level III or Information Assurance Architect and Engineer Level I within 6 months of hire
Clearance
Current Top Secret Clearance with SCI Eligibility Experience with access to Special Access Program Information Willingness to submit to a Counterintelligence polygraph
Perks & Benefits
Vacation: New hires accrue 20 days of PTO and 10 holidays per year Health Insurance: Zero-deductible health plans Flexible Schedules: Flex schedules Professional Development: Up to $10,000 annual education/training reimbursement ESOP: Funded Stock Ownership Plan 401k: 6% match with immediate vesting Bonus Program: Semi-annual bonus opportunity Mentorship: Career mentorship programs
Why MTSI
Interesting work and critical national defense programs Employee-first values and competitive benefits 100% employee-owned company culture Comprehensive benefits including PTO, health, 401k, ESOP and education reimbursement
EEO Statement
MTSI embraces nine core values including Employees come first. We are committed to Equal Opportunity, making decisions without regard to race, color, religion, sex, national origin, age, military status, disability, or other protected characteristics. MTSI provides reasonable accommodations to applicants and employees with physical and/or mental disabilities. Seniority level
Mid-Senior level Employment type
Full-time Job function
Information Technology Industries
Space Research and Technology #J-18808-Ljbffr
Information Systems Security Engineer (ISSE) role at Modern Technology Solutions, Inc. (MTSI). The ISSE is primarily responsible for conducting information system security engineering activities with a focus on the lifecycle of current systems and future requirement scoping. The position will collect and process information security requirements and ensure that the requirements are integrated into information systems through security architecting, design, development, and configuration. The ISSE is part of the development team designing and developing organizational information systems or upgrading legacy systems. The ISSE applies best practices when implementing security requirements within an information system including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques. This role works within Special Access Programs (SAPs) supporting DoD agencies, such as HQ Air Force, OSD, and Military Compartments, and provides day-to-day support for Collateral, Sensitive Compartmented Information (SCI) and SAP activities. Responsibilities Perform oversight of the development, implementation and evaluation of information system security program policy; emphasis on integration of existing SAP network infrastructures Perform analysis of network security based on the Risk Management Framework (RMF) with emphasis on the Joint Special Access Program Implementation Guide (JSIG) authorization process Provide expert support, research and analysis of exceptionally complex problems and processes Serve as technical expert to the Cybersecurity Assessment Program, providing technical direction, interpretation and alternatives to complex problems Think independently and demonstrate exceptional written and oral communications; apply advanced technical principles, theories, and concepts Contribute to the development of new principles, concepts, and approaches Work on unusually complex technical problems and provide highly innovative and ingenious solutions Recommend cybersecurity software tools and assist in developing tool requirements and selection criteria, including product-specific STIGs from applicable DISA SRGs Lead technical teams in implementing predetermined long-range goals Support customer and SAP community IA working groups and participate in SSE IPT reviews Provide expert-level consultation and technical services on all aspects of information security Review ISSE-related designs and provide security compliance recommendations Develop and provide IA risk management recommendations to the customer Provide ISSE support for mission and training systems design and development Assist with development and maintenance of the Program Protection Plan Assist with site activation activities and design reviews Represent the customer in ISSE-related working groups, advisory groups and advisory council meetings Maintain a strong background in patch/configuration management, DevOps, and tier 3 support Assist the team to design, integrate, and implement JSIG/RMF Continuous Monitoring tools and processes Integrate COTS and GOTS products to collect, display and remediate a variety of automated system security and operations/performance metrics Perform security assessments of servers, network devices and security appliances Develop improvements to security assessments for accuracy and efficiency Integrate ancillary monitoring tools with the enterprise SIEM and create/tailor complex event alarms, rules and summary reports Write and execute cybersecurity test procedures for validation of control compliance Monitor and analyze outputs of cybersecurity tools for reportable security incidents and residual risk Analyze technical risk of emerging cybersecurity tools and processes Work as part of a security incident response team as needed Build O&M checklists to maintain the service and develop TTPs and SOPs for service checklists Integrate and develop new techniques to improve confidentiality, integrity and availability for networks and systems operating at various classification levels Demonstrate advanced technical competency in platforms including Microsoft Windows Server, Active Directory, Red Hat Enterprise Linux servers, hypervisors, enterprise networking and security tools Utilize toolkits and SIEMs (e.g., LogRhythm), vulnerability scanners (e.g., ACAS/Nessus/SCAP), RBAC concepts, and related security technologies
Qualifications and Experience
10-12 years of related experience SAP experience preferred Prior performance in roles such as ISSO, ISSM, SCA, or SAP IT Technical Director Bachelors degree in a related discipline or equivalent experience (4 years) Expert knowledge of DoD, national and service/agency security policy, manuals and standards; ability to work in a dynamic environment with DoD personnel and industry partners
Certifications
Must meet DoD Directive 8570.01-M requirements for Information Assurance Manager Level III or Information Assurance Architect and Engineer Level I within 6 months of hire
Clearance
Current Top Secret Clearance with SCI Eligibility Experience with access to Special Access Program Information Willingness to submit to a Counterintelligence polygraph
Perks & Benefits
Vacation: New hires accrue 20 days of PTO and 10 holidays per year Health Insurance: Zero-deductible health plans Flexible Schedules: Flex schedules Professional Development: Up to $10,000 annual education/training reimbursement ESOP: Funded Stock Ownership Plan 401k: 6% match with immediate vesting Bonus Program: Semi-annual bonus opportunity Mentorship: Career mentorship programs
Why MTSI
Interesting work and critical national defense programs Employee-first values and competitive benefits 100% employee-owned company culture Comprehensive benefits including PTO, health, 401k, ESOP and education reimbursement
EEO Statement
MTSI embraces nine core values including Employees come first. We are committed to Equal Opportunity, making decisions without regard to race, color, religion, sex, national origin, age, military status, disability, or other protected characteristics. MTSI provides reasonable accommodations to applicants and employees with physical and/or mental disabilities. Seniority level
Mid-Senior level Employment type
Full-time Job function
Information Technology Industries
Space Research and Technology #J-18808-Ljbffr