Information System Security Engineer
The Information Systems Security Engineer shall perform technical security assessments to identify points of vulnerability. This engineer will vet for compliance with information assurance standards and regulations, and recommend mitigation strategies for areas of non-compliance and/or vulnerability.
- Validate and verify system security requirements definitions and analysis and establishes system security designs.
- Design, develop, implement and integrate IA and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements.
- Builds IA into systems deployed to operational environments.
- Supports the building of security architectures. Assists architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions.
- Enforce the design and implementation of trusted relations among external systems and architectures. Assesses and mitigates system security threats/risks throughout the program life cycle.
- Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. Reviews certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content.
- Top Secret/SCI with poly clearance.
- Certification in one of these is required: CISSP (or Associate), CSSLP, or CASP CE
- Experience applying system security engineering expertise in one or more of the following: system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security testing.
- Experience supporting security authorization activities in compliance with NSA/CSS Information System Certification and Accreditation Process (NISCAP) and DoD Information Assurance Certification and Accreditation Process (DIACAP) process, the NIST Risk Management Framework (RMF) process, and prescribed NSA/CSS business processes for security engineering.
What is it like to be Resolute?
Resolute offers exceptional compensation and benefits such as 38 days paid leave, including birthdays off, robust training, student loan repayment, a company contribution into your 401k retirement plan up to 10%, of base salary, maternity/paternity benefits, a flexible schedule, and more!
We take pride in performing rewarding and challenging work in mission critical areas. Our culture consistently demonstrates the appreciation we have for our employees.
Apply today if you are seeking a purposeful and impactful career!