Information Systems Security Engineer

Information Systems Security Engineer (ISSE)

Aurora, CO

The Information Systems Security Engineering (ISSE) position supports a national security focused customer providing system security engineering services and/or product to ensure secure reliable and uninterrupted availability of customer developed and deployed systems and networks. The ISSE will ensure core security engineering principles are implemented into assigned programs information systems architecture. The ISSE responsibilities include, but are not limited to:

• Perform analysis and evaluation to design, implement, test and field secure systems, networks, and architectures.
• Develop, implement, and enforce information systems security policies ensuring system security requirements are addressed during all phases of the acquisition and Information System (IS) lifecycle.
• Conduct certification and testing in accordance with the Risk Management Framework (RMF) and National Institute of Standards and Technology (NIST) policy; identify deficiencies and providing recommendations of risk mitigation to customer.
• Support the Customer to resolve conflicting system security engineering requirements.
• Develop program technical publications such as Systems Engineering Plans (SEP), Technical Plans, Analyses and Reports, Risk Assessments, Security Concepts of Operations (SECONOP), Program Protection Plan, Anti-Tamper Plan, Cybersecurity Strategy, Technology Development Strategies, Test Plans, procedures and reports, System Security Plans and Customer related documentation.

Required Skills:

• Active and within scope DoD TS/SCI clearance.
• Ability to obtain a favorable Counter Intelligence (CI) Polygraph.
• At least five (5) years of experience as an ISSE on programs and contracts of similar scope, type, and complexity within the Federal Government.
• Expert technical knowledge in security engineering and IT systems engineering.
• Experience with testing methods, automated tools, plans, and procedures for verification of compliance and vulnerability requirements.
• Expert knowledge of security engineering, design concepts and principles.
• Familiarity with Risk Management Framework (RMF) methodologies and the 800 series of Nation Institute of Standards and Technology (NIST) Special Publications (in particular 800-37, 800-39, 800-53, 800-53A, and and Committee National Security Systems Instruction (CNSSI) 1253, JSIG, and DAAPM.
• Experience with modern networks, operating systems, databases, and virtual computing.
• Extensive experience analyzing information technology and system risk in complex environments and articulating results to all levels of personnel.
• Experience conducting information system security control assessments (SCAs) and applying standard auditing techniques during systems security control assessments, including the proper interpretation of the control requirements, determining if the artifacts provided are sufficient and recommending remedial action to Customer to ensure compliance.
• Knowledge of Department of Defense Architecture Framework (DoDAF) views facilitating integration and promoting interoperability across capabilities and among integrated architectures.
• Knowledge of the policies and practices for Critical Program Information (CPI) mandates for technologies.
• Extensive knowledge of Department of Defense, Intelligence Community policies, procedures, and guidelines for designing secure architectures.
• Knowledgeable of DoD and IC on the acquisition processes.
• Ability to develop and interpret security architectures, data flow diagrams, engineering electrical/pinout drawings, and publications that depict the system(s) architecture.
• Proven ability to multi-task and deliver on-time with the highest quality.
• Ability to be able to identify risk areas of non-compliance and propose solutions to design to fullfill operational requirements and meet cybersecurity requirements simultaneously.
• Proficient in Microsoft and LINUX
• Experience with RMF database repositories (eMass, ServiceNow, Xacta)
• Ability to understand information systems equipment configurations (switches, routers, IDS, firewalls, servers, storage arrays, etc...)

Preferred Skills:

• Bachelor's degree from an accredited college in a related discipline, or equivalent experience/combined education, with 2 years of professional experience

Other Requirements:

U.S. Citizenship required

Work: Onsite Full-time: The work associated with this position will be performed onsite at a designated ICR facility.

Background Check: Candidates who receive a conditional offer of employment will be subject to a background check and drug screen.

Salary Range: $95,000 - $150,000

This position offers a comprehensive benefits package that includes company equity, retirement plan, company-paid health care benefits, flexible paid time off policy, and opportunity for a raise and bonus during the year.

ICR, Inc. considers several factors when extending job offers, including but not limited to candidates' key skills, relevant work and/or military experience, education, training, certifications and work location.

ICR is proud to be an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status, or any other protected factor.