Information Systems Security Engineer/Manager (ISSE/ISSM)

POSITION SUMMARY
Provides comprehensive cybersecurity support for PMS 339 Surface Training Systems as ISSE/ISSM. Conducts RMF implementation, cybersecurity assessments, vulnerability analysis, and security control validation for shore-based training systems while ensuring compliance with DoD requirements.

ESSENTIAL FUNCTIONS
• Serve as ISSE/ISSM supporting RMF Assessment & Authorization (A&A) for PMS 339 training systems
• Provide Navy Qualified Validator (NQV) support for ATO packages and continuous monitoring (RMF Step 6)
• Conduct vulnerability scanning, STIG compliance validation, and manage POA&M entries to ensure vulnerabilities are tracked and resolved
• Perform annual security control testing and assessments per NIST 800-53 requirements
• Develop RMF technical artifacts including System Security Plans (SSPs), security documentation, and network diagrams
• Provide cybersecurity expertise across system lifecycles including support for T&E, DT&E, and OT&E activities
• Implement and maintain cybersecurity processes including IAVM compliance, FISMA reporting, and contingency testing
• Apply expertise in security infrastructure (Firewalls, VPN, DLP, IDS/IPS, Web-Proxy) to protect training systems
• Support ITPR process to ensure efficient IT expenditures and prevent duplicative investments
• Produce technical documentation including white papers, risk assessments, and security recommendations
• Attend CCB meetings and support Cyber PAPM with policy development and program management

REQUIRED QUALIFICATIONS
Education: Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or related technical field OR 15+ Years of Relevant Experience
Experience: 5+ years as network engineer or cyber analyst
Required Skills:
• RMF experience and familiarity with eMASS or qualified as Navy Validator
• Hands-on experience with vulnerability scanning (ACAS/Nessus) and STIG compliance
• Working knowledge of NIST 800-53 security controls and POA&M management
• Understanding of security infrastructure: Firewalls, VPN, DLP, IDS/IPS, Web-Proxy
• Knowledge of ITPR process for IT procurement and investment decisions

Required Certifications (IAW DoD 8140.03):
One or more current certifications:
• CISSP, CCSP, CompTIA Security+ CE, CompTIA CySA+, CompTIA SecurityX, GIAC (GSEC, GCIH), or EC-Council CEH

Desired Skills:
• Navy Qualified Validator (NQV) Level II or III
• Advanced certifications (CISSP concentrations, GIAC advanced certs)
• 10+ years cybersecurity experience with Navy/NAVSEA programs
• Master's degree in Cybersecurity or Information Assurance

BENEFITS PACKAGE
Our comprehensive benefits package includes:
• Medical Insurance (90% employer-paid)
• Dental Insurance (90% employer-paid)
• Vision Insurance (90% employer-paid)
• 401(k) with employer match
• Generous Paid Time Off (PTO)
• Professional Development Assistance
• Educational Assistance/Tuition Reimbursement
• Life Insurance
• Short-term and Long-term Disability
• Health Savings Account (HSA) option
• Paid Holidays
• Career Growth Opportunities
• Professional Certification Support
• Annual certification renewal support

This position is contingent upon contract award and final government approval. Candidates selected for this role will be contacted regarding next steps as soon as the contract is awarded.