Information Systems Security Engineer (ISSE) with Security Clearance

---

Job description

Job Title: Principal Information Systems Security Engineer (ISSE)
Location: Northern Virginia
Company: RogueThink
Clearance Required: ISSA/Top Secret with a Full Scope Polygraph
Position Type: Full-Time
About RogueThink
At RogueThink, we are dedicated to excellence, innovation, and integrity. We provide top-notch solutions and support to our federal clients and are committed to fostering a diverse and inclusive work environment. We are seeking a highly skilled and experienced Principal Information Systems Security Engineer to join our team and lead efforts in cybersecurity engineering and secure software development.
Role Overview
As the Principal Information Systems Security Engineer, you will play a critical role in overseeing cybersecurity measures, managing accreditation efforts, and ensuring the highest standards of information security across applications and systems. Your expertise will drive our security initiatives and help maintain the integrity and security of our federal client's systems.
Responsibilities
• Cybersecurity Oversight: Lead cybersecurity measures for applications within an agile software environment.
• Assessment & Authorization: Manage the assessment and authorization (A&A) processes for accrediting and reaccrediting system authorizations.
• Common Control Provider (CCP): Utilize CCP knowledge to secure authorizations for applications on new platforms.
• System Decommissioning: Collaborate with stakeholders to ensure smooth decommissioning and accreditation of replacement systems with minimal downtime.
• Technical Exchange Meetings: Conduct and facilitate Technical Exchange Meetings (TEMs) and liaise with key departments to support A&A efforts.
• POAM Management: Track and manage Plans of Action and Milestones (POAMs) for all systems, recommend remediation steps, and ensure timely completion.
• System Self-Scans: Perform system self-scans to support initial, update, and reaccreditation efforts.
• Technical Planning: Engage in technical planning, system integration, verification, validation, and risk assessments.
• Documentation: Create Basis of Estimate (BOE) documentation, security evaluation test plans, and other critical artifacts.
• Security Best Practices: Develop and document security best practices and RMF accreditation recommendations.
• Application Security: Drive application security and secure software development lifecycles, including containerization security as per NIST SP 800-190.
• Security Testing: Conduct hands-on security testing, analyze results, and recommend countermeasures.
• Cloud & Network Guidance: Provide guidance on cloud computing services, deployment architecture, and network management tools.
• Client Communication: Communicate with clients regarding project-specific activities and manage project-related deliverables.
• Process Improvement: Facilitate working groups to analyze processes and develop new business strategies.
Qualifications
• Education: Bachelor's Degree in Security and Intelligence or a related technical field.
• Certifications: Security+ CE, AWS Advanced Architect, and Splunk Fundamentals 1 and 2.
• Experience: Minimum of 8 years in information systems security engineering, risk assessment, and vulnerability management.
• Skills:
o Extensive knowledge of cloud computing services, secure software development lifecycles, and containerization security.
o Proficiency in creating and maintaining security documentation and Standard Operating Procedures (SOPs).
o Demonstrated ability to lead technical exchange meetings, manage project deliverables, and ensure compliance with security standards and policies.
Benefits
• Competitive Compensation: Attractive salary with performance bonuses based on individual and company performance.
• 401(k) Matching: Dollar-for-dollar matching on the first 6% of contributions through Vanguard.
• Referral Bonuses: $8,000 for TS/SCI resources and $5,000 for other referrals.
• Paid Time Off: Competitive PTO offerings based on seniority.
• Federal Holidays: Paid holidays including New Year's Day, Martin Luther King Jr. Day, Presidents Day, Memorial Day, Independence Day, Labor Day, Columbus Day, Veterans Day, Thanksgiving Day, and Christmas Day.
• Insurance: Comprehensive health, dental, vision, disability, accident, critical illness, and life insurance.
• Family Leave: Paid parental leave (5 days) and bereavement leave (3 days for immediate family).
• Training and Development: Access to online and in-person training, and tuition assistance for relevant educational programs.

RogueThink is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

<!– job description page –>