Information Systems Security Engineer (ISSE)

ASRC Federal Broadleaf Division is actively hiring an ISSE in support of our DCSA program based out of Quantico VA.

This is primarily a Telework position with a requirement to be onsite at least two (2) days a week at Quantico Marine Corps Base VA.

As an ISSE, you will play a crucial role in ensuring the cybersecurity of the IT infrastructure, applications, and any new development projects with ensuring the security efficacy of networks. As such, technical analysis, research, evaluation, and technical guidelines shall be performed in order to accomplish the needed support. The workload for ISSE will vary depending on the number of active development projects, the RMF governance tier level, and other technical evaluations required by DCSA.

BASIC QUALIFICATIONS: 

Candidates should demonstrate a detailed knowledge the following: 

• Knowledge of DoD, NIST, Cloud, DISA, and other applicable Cybersecurity Policies, Procedures, and best practices
• Must have experience as an RMF/A&A team lead or significant contributor, preferred if a technical advisor in a certain system or technology, i.e., networking, AWS cloud, servers, etc.
• An understanding of the RMF workflows to include what transpires for inputs/outputs at each step of the RMF process.
• Demonstrated experience with research and analysis of Commercial-Off-The-Shelf (COTS) and Government-Off-The-Shelf (GOTS) and IA-enabled products as part of the security architecture and ensure products are National Security Telecommunications and Information Systems Security Policy Number 11 (NSTISSP-11) compliant and validated via the NIAP Common Criteria Evaluation and Validation Scheme or NIST Federal Information Processing Standards (FIPS) Cryptographic Module Validation Program (CMVP).
• Experience with the review of boundary diagrams, MOUs, ISAs, and other RMF package components as needed for the success of RMF activities
• Ability to assess current infrastructure and architecture and make recommendations for improvement, expansions, and device/software lifecycle management.
• Liaise with internal and external partners at all levels, government and private sector, in order to benefit the organization.
• Brief senior government and other contract staff on status of ongoing RMF programs, work efforts, gather and present metrics on work activities as needed.

YEARS EXPERIENCE:

At least five (5) years System Level Cybersecurity Experience to include:

• Two (2) years hands on experience with eMASS or other similar compliance system, entering packages, managing POA&Ms, running reports, etc.
• Three (3) years’ experience designing IT system architecture and solutions for a mid to large enterprise with both local and remote connection requirements

EDUCATION REQUIREMENTS:

Bachelor’s Degree, or equivalent experience in Cybersecurity, and/or Information Systems Management, Information Technology

CERTIFICAITON(S):

Must meet DoD 8570 requirements by having at minimum one of the following certification: IASAE I (CASP+ CE, CISSP (or Associate), CSSLP or IAM II (CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, HCISPP) or IAT II (CCNA Security, CySA+, GICSP, GSEC, Security+, CND, SSCP)

CLEARANCE LEVEL:

Active Secret Required and eligibility for TS

WORK ENVIRONMENT AND PHYSICAL DEMANDS: 

This is primarily a Telework position with a requirement to be onsite at least two (2) days a week.

If alternate worksite is other than DCSA facilities or corporate office space, must have the reliable ability to communicate over voice (cell phone preferred) and stable, capable internet connection.

Must speak English well enough to communicate complex technical ideas to a diverse customer both verbally and in written form.