Information Systems Security Engineer
Information Systems Security Engineer
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
Needs to have design/architecture experience with Azure (recent). Its not a junior level spot.
Local to DC on site Day 1 and then when needed
Prefer to see candidates who are currently working. Can take upto 5 weeks for onboarding they need Public Trust clearance.
Below is the full job description for you review:
Notes from our call with the Manager:
Key Takeaways for Ideal Candidate
- Deep Azure security knowledge and experience building or designing cloud security environments.
- Confident in explaining Zero Trust encryption methods (e.g. TLS vs SSL asymmetric vs symmetric) and IAM practices.
- Comfortable navigating and contributing to the federal ATO process.
- Able to articulate technical work clearly and engage with both technical and non-technical stakeholders.
- Proactively engages with vendors and engineers to validate secure cloud configurations.
Behavioral/Soft Skills
- Must ask the right questions-able to dig deep technically and think critically.
- Should demonstrate initiative in dealing with cloud vendors and not just defer to FedRAMP labels.
- Candidates should be self-sufficient and effective in one-and-done interviews.
Overview:
- Possess multi-tasking skills be able to handle multiple A&A systems / projects simultaneously as well as being a good communicator / facilitator. Comfortable communicating at all levels from developer / engineer to senior contractor / customer staff.
- Knowledge of complex network environments involving shared networks and multiple security enclaves.
- Document the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation for the various Assessment and Authorization (A&A) efforts.
- Document and obtain a general understanding of the architecture being developed or that was developed for each project to write the Systems Security Plans (SSP) / CONOPS.
- Gather the information by working with various systems owners project managers and engineering team members to write various additional A&A related documents such as Contingency Plan (CP) General User Guide (GUG) Privileged User Guide (PUG) Standard Operating Procedures (SOPs) etc.
- Document the Plans of Actions and Milestones (POA&Ms) implementation responses or mitigations as well as provide all required artifacts (i.e. evidence gathering from the system owners PMs and engineering teams).
- Coordinating with various contractor and customer personnel to obtain the A&A content as well as working with various customer security organizations to navigate the customers A&A process to achieve Authority to Develop (ATD) Interim Authority to Operation (IATT) and Authority to Operate (ATO) for each of the primary and secondary assigned systems.
- Provide appropriate support for ATOed systems that are in continuous monitoring.
- Possess the ability to bridge the technical implementation (i.e. engineering talk) into commonly understood security verbiage. Often this is a skillset and is not an actual language frequent translation or a basic understand needs to be conveyed by the ISSE when speaking with others or when communicating in writing to ensure its easy to understand at all levels.
Qualifications:
- 10 years experience and a bachelors degree minimum required.
- Previous ISSE experience directly supporting the customer.
- SaaS applications along with Public private and/or hybrid Cloud experience is a must (AWS Microsoft Azure etc.).
- At least 1 certification required CISSP or GSLC certification.
- Experience within Federal Government such as DHS FDA NIH or HHS is highly preferred.
Employment Type
Full-time
