Full-Time Information Systems Security Engineer (On-Site)
Job Description
BreakPoint Labs is seeking an on-site Information System Security Engineer (ISSE) to support RMF package creation and maintenance for assigned information system(s), using standards such as DoD Directive 8510.01, DoD Instruction 8500.01, CNSSI 1253, and NIST Publications. This position will be located on-site and no remote or hybrid work will be considered.
The ISSE responsibilities will consist of:
- Deliver IT, system/security engineering, and technical assistance support as requested by stakeholders.
- Accurately and efficiently record applicable information in the Enterprise Mission Assurance Support Service (eMASS) suite of modules, to include Asset Manager, in accordance with approved procedures and guidance.
- Apply and implement standards, directives, guidance, policies, and security controls to information technology/computing environments.
- Assist with the maintenance of the security posture of IT systems to include patching, implementing STIGs, and applying new security measures, as required.
- Develop and maintain documentation to include System Security Plans (SSPs), Risk Assessment Reports (RAR), Security Controls Traceability Matrix (SCTM), and other Assessment & Authorization (A&A) artifacts (e.g. plans, procedures, policies), ensuring relevancy and accuracy.
- Support vulnerability/risk assessment analysis to support Assessment & Authorization (A&A), including system self-assessments.
- Conduct scans of the assigned environment(s) using tools such as SCAP (SCC), Tenable Security Center/Nessus, eMASSter, EvaluteSTIG, and other vulnerability/compliance verification tools, as required.
- Assist in the research and addressing of information security issues as required, and develop and maintain the Plan of Action and Milestones (POA&M) and support remediation activities.
- Communicate technical information in the form of verbal and visual updates, technical reports, and briefings. Writing and documentation skills are required, and of equal importance, presentation skills as well as.
- Employ organizational and interpersonal skills to succeed in a fast-paced environment.
Required Experience:
- Professional experience serving as an ISSE or related (e.g. Information System Security Officer (ISSO)
- Prior experience maintaining and/or configuring operating systems such as Windows or Linux.
- Working knowledge of DoDI 8510, CNSSI 1253, NIST 800-53
- Experience utilizing DoD-approved scanning/testing tools (e.g. Nessus, SCAP, EvaluateSTIG, eMASSter, etc.) is required
- Experience using eMASS is required
- Experience referencing and/or utilizing the Navy RMF Process Guide is preferred.
- Strong documentation, analysis, and oral/written communication skills are required.
- Effective time/task management is essential.
- 8570 IAM Level II certification required. Certifications IAM Level II Certification is required & an Operating System (OS) certification
Security Clearance Required: Secret
See why we are a Great Place to Work
How to Apply
Apply Here or visit our Website47 total views, 0 today