Information Systems Security Engineer (ISSE) - Cyber Security (TS/SCI)

Come join our growing team with a 21st Century Vision! At KaylaTek we understand that the key to our success is the quality of the people we employ. Our focus is not just on jobs but on building and enhancing your career through ongoing professional development training and high quality of life. Our team members choose KaylaTek for a number of reasons including our competitive compensation and benefit packages dedication to education as well as our outstanding service. Our Grow Strong Vision encompasses a place for employees to grow learn and feel a sense of belonging not just a place to work.

Employee Benefit Offerings

Medical Dental Vision 401(k) with company matching Short-Term and Long-Term Disability Life and AD&D Insurance Paid Time Off 11 Paid Holidays Employee Assistance Program (EAP) Professional Development Program Referral Bonuses Military Support and much more.

Job Site: Pentagon - 100% on site

Shift Hours: Day-Shift; core support hours are 0600 -1800. This is a 24/7/365 support environment; off-hours response/support may be required however only standard M-F core hours working time for current position.

Summary

Our Cybersecurity Team is seeking a highly skilled Information System Security Engineer (ISSE) to maintain and enhance the security posture of the National Military Command Center (NMCC) environment. This technical role is critical for the health and performance of our security infrastructure requiring expertise in system administration security tool management and system hardening. A deep understanding of operating systems security tools and server infrastructure is essential.

Roles and Responsibilities:

The ISSE will be responsible for the following:

Security Tool Infrastructure Management
o Primary responsibility for the backend infrastructure deployment patching tuning and overall health of security tools including Tenable Nessus Trellix ePO (HBSS/ESS) and associated Windows and Red Hat Linux servers.
o Proactively monitor system performance identify bottlenecks and implement solutions to ensure optimal operation of security tools.
o Develop and maintain standard operating procedures (SOPs) for security tool administration.

Vulnerability Management & System Hardening
o Conduct technical security assessments of computing environments to identify points of vulnerability and recommend mitigation strategies.
o Implement Security Technical Implementation Guides (STIGs) on Windows and Red Hat Linux systems.
o Develop and implement security designs for new and existing network systems ensuring hardware operating systems and software applications adequately address cybersecurity requirements.

Remediation & Continuous Monitoring
o Develop and implement approaches to mitigate IS and Network Environment vulnerabilities recommending changes to network or network system components as needed.

Security Architecture & Integration
o Build IA into systems deployed to operational environments validating and verifying system security requirements and establishing system security designs for stand-alone systems. Support security planning assessment risk analysis and risk management.

Security Tool Troubleshooting & Support
o Provide Tier 3 troubleshooting support for cybersecurity tools such as ACAS and HBSS/ESS.

RMF Support & Documentation
o Support the documentation of security control implementations and gathering of artifacts to support Risk Management Framework (RMF) and ICD 503 Security Accreditation.
o Assist with RMF related tasks as needed

Qualifications:

• Active Top Secret-SCI security clearance.
• Active COMPTIA Security CE certification.
• 5 years of hands-on experience administering and maintaining Tenable Nessus Trellix ePO (HBSS/ESS) and related security tools in a production environment.
• Proven ability to implement and validate STIGs on Windows and Red Hat Linux systems.
• Expertise in troubleshooting and resolving issues related to Nessus ePO and associated infrastructure components.
• Deep understanding of Windows and Linux operating systems networking protocols and security best practices.
• 5 years of experience in systems engineering including design and architecture.
• Demonstrated capability to identify security risks throughout information system network structures to include the Operating Systems hardware and various data transfer protocols.
• Effective communication and presentation skills.
• Strong planning organizational and time management skills.
• Demonstrated initiative and ability to work independently.

Preferred Qualifications (Desired Skills/Experience)

• Ability to Run Evaluate - STIG scans on Windows and RHEL servers as well as network devices
• Knowledge of the process of obtaining licenses for all HBSS ePOs and Tenable Security Centers
• Thorough understanding of Information Security principles and Risk Assessment techniques

MUST BE A US CITIZEN

The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required of personnel so classified.

EQUAL OPPORTUNITY EMPLOYER

KaylaTek is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity or expression pregnancy age national origin disability status genetic information protected veteran status or any other characteristic protected by law.

E-VERIFY AND BACKGROUND CHECKS

In compliance with federal law all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire. KaylaTek participates in the DHS e-Verify program. KaylaTek also conducts a background check on all candidates post offer though PROScreening LLC.

In compliance with federal law all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form (I-9) upon hire. KaylaTek participates in the DHS e-Verify program. KaylaTek also conducts background checks (criminal education prior employment and professional certifications/licensing) on all candidates post offer though PROScreening LLC.

The Air Force National Capital Regional (AFNCR) IT Services Contract also requires pre-employment drug testing and annual drug testing for all hires to work on contract with the Air Force. This is at no cost the candidate/employee