Information Systems Security Engineer (ISSE)

About the Team:

The Security team at STR is comprised of highly skilled professionals who are responsible for maintaining compliance with Government protocol and directives.

The Classified Cybersecurity (CCS) team consists of a collaborative group of ISSMs ISSOs and ISSEs who are passionate about national security and take great pride in maintaining Confidentiality Integrity and Availability of our Information Systems and enable execution of STRs portfolio of programs across a vast customer base.

The Role:

STR has an exciting opportunity for a well-rounded cybersecurity professional to join our Cybersecurity/Risk Management Framework (RMF) program as a key contributor for classified programs.

In this dynamic position you will interface and collaborate with other Cybersecurity professionals (ISSMs ISSOs) Security professionals (CPSOs FSOs) and System Administrators from our Classified Information Technology (CIT) organization. Your responsibilities will include ensuring overall compliance managing configuration changes supporting security architecture and staying abreast of current and future technologies.

Please notethis is not a remote and/or hybrid role and requires you to be onsite.

Responsibilities:

• Conduct both vulnerability and compliance scans of Information Systems.

• Support the development of Risk Management Framework (RMF) documentation and control validation testing for Authority to Operate (ATO) accreditations.

• Develop cybersecurity requirements design and architecture for current and emerging program needs.

• Implement Information Assurance and Information Security protections and requirements in program development and execution environments.

• Apply required security controls to networking devices databases operating systems and hardware/software components.

• Assist ISSMs and ISSOs in monitoring and resolving Plan of Action and Milestones (POA&M) to mitigate system vulnerabilities.

• Conduct reviews and technical inspections to identify and mitigate potential security weaknesses ensuring all security features are implemented and functional.

• Support the completion of Continuous Monitoring requirements in accordance with RMF and NIST SP800-53 standards.
• Perform other tasks as assigned by the manager.

Who you Are:

• Security Clearance: Active Top Secret security clearance with the ability to obtain SAP and SCI access (U.S. citizenship required).

• Experience: 3-5 years of technical (hands-on) experience in Information Assurance/Cyber Engineering including requirements development and implementation.

• Certification: DoD 8570 IAM Level III certification (CISA CISM CISSP etc.) or the ability to obtain within 6 months of hire.
• Familiarity: Knowledge of the DCSA Authorization and Assessment Process Manual (DAAPM) and the Joint Special Access Implementation Guide (JSIG).
• Technical Skills:
  • Configuration certification and auditing/analysis of Windows/Linux operating systems and system virtualization in peer-to-peer LAN & WAN networks.
  • Managing and implementing DISA STIGs and benchmarks in various operating systems (Windows RHEL Ubuntu).
  • Using IA vulnerability/compliance scanning tools (e.g. NMap ACAS Nessus Security Content Automation Protocol (SCAP)).
  • Maintaining/managing Security Incident and Event Management (SIEM) and centralized auditing tools (e.g. Splunk PowerStrux).
  • Familiarity with Microsoft Deployment Toolkit (MDT).
  • Supporting the hardening of new builds of Information Systems (IS) and ensuring full functionality before deployment.
  • Scripting in Windows and/or Linux.
  • Using McAfee/Trellix ePO including familiarity with DLP components.
  • Experience in one or more of following technical areas Artificial Intelligence DevSecOps Cloud or Containerization.
  • Experience with NIST SP800-53 technical control implementation and assessment.

• Attributes: Excellent communication skills detail-oriented self-starter with a focus on understanding STR CCS and CIT processes and procedures. A desire for continuous improvement while working in a team environment and the ability to handle multiple fast-changing priorities/projects effectively.

STR is a growing technology company with locations near Boston MA Arlington VA Dayton OH Melbourne FL and Carlsbad CA. We specialize in advanced research and development for defense intelligence and national security in: cyber; next generation sensors radar sonar communications electronic warfare; artificial intelligence algorithms and advanced analytics to make sense of the complexity around us.

STRis committed to creating a collaborative learning environment that supports deep technical understanding and recognizes the contributions and achievements of all team members. Our work is challenging and we go home at night knowing that we pushed the envelope of technology and made the world safer.

STR is not just any company. Our people culture and attitude along with their unique set of skills experiences and perspectives put us on a trajectory to change the world. We cant do it alone though - we need fellow trailblazers. If you are one join our team and help to keep our society safe! Visit us atfor more info.

Im thinking this format pasted in at the bottom (after the requirements but before the company description EEO statement etc.)... but Im waiting for Cristy to tell me if she likes that or not

Pay Information
Full-Time Salary Range: $136000 - $170000

The salary range listed is based on external market data. Offers are based on factors such as but not limited to the candidates experience education training key skills/critical skills security clearances and prevailing market and business conditions.

STR is a growing technology company with locations near Boston MA Arlington VA near Dayton OH Melbourne FL and Carlsbad CA. We specialize in advanced research and development for defense intelligence and national security in: cyber; next generation sensors radar sonar communications and electronic warfare; and artificial intelligence algorithms and analytics to make sense of the complexity that is exploding around us.

STRis committed to creating a collaborative learning environment that supports deep technical understanding and recognizes the contributions and achievements of all team members. Our work is challenging and we go home at night knowing that we pushed the envelope of technology and made the world safer.

STR is not just any company. Our people culture and attitude along with their unique set of skills experiences and perspectives put us on a trajectory to change the world. We cant do it alone though - we need fellow trailblazers. If you are one join our team and help to keep our society safe! Visit us more info.

STRis an equal opportunity employer. We are fully dedicated to hiring the most qualified candidate regardless of race color religion sex (including gender identity sexual orientation and pregnancy) marital status national origin age veteran status disability genetic information or any other characteristic protected by federal state or local laws.

If you need a reasonable accommodation for any portion of the employment process email us atand provide your contact info.

Pursuant to applicable federal law and regulations positions at STR require employees to obtain national security clearances and satisfy the requirements for compliance with export control and other applicable laws.