Information Systems Security Engineering (ISSE)
Annapolis Junction, MD, United States
Full Time Senior-level / Expert Clearance required USD 135K - 216K
Peraton
Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly...Responsibilities
Be part of our exciting team supporting a robust, world-wide communications network, providing office automation packages; document and information management tools; and collaboration, voice, and video tools in a secure, flexible, distributed architecture supporting a classified DoD IT system deployed worldwide. Peraton is seeking an Information Systems Security Engineering (ISSE) to collaborate on design efforts, provide security engineering, and lead the engineering of RMF B0E artifacts of a large-scale enterprise Information Technology (IT) program. Responsibilities include:
- Provide ISSE expertise for all assigned engineering tasks and projects.
- Provide guidance describing the system and its functions, information types, operating environments, and security requirements.
- Review the adequacy of the security controls and their ability to protect the information system and its information; assist in tailoring security controls, as appropriate.
- Assist in determining the assurance measures that can be used to meet assurance requirements.
- Integrate ISSE team members into all Scrum and project teams to provide for all requisite RMF security related support.
- Work collaboratively with Systems, Network, and other engineers throughout the service design lifecycle to design and implement security controls, and best practices such as Zero Trust Architecture, including engineering of assigned RMF BoE documentation.
- Conduct Assessment and Accreditation (A&A) activities, following security processes and coordinating with the Designated Authorizing Official (DAO) representatives and appropriate security teams.
- Create and update assigned RMF documentation and artifacts for each service, as required.
- Provides technical and programmatic information assurance services to internal and external customers in support of network and information security systems.
- Designs, develops, and implements security requirements within an organization’s business processes.
- Prepares documentation from information obtained from customer using accepted guidelines.
- Prepares security test and evaluation plans.
- Provides certification and accreditation support in the development of security and contingency plans and conducts complex risk and vulnerability assessments.
- Analyzes policies and procedures against Federal laws and regulations and provides recommendations for closing gaps.
- Recommends system enhancements to improve security deficiencies.
- Develops, tests, and integrates computer and network security tools.
- Secures system configurations and installs security tools, scans systems to determine compliancy and report results and evaluates products and various aspects of system administration.
- Conducts security program audits and develops solutions to lessen identified risks.
- Provides information assurance support for the development and implementation of security architectures to meet new and evolving security requirements.
- Provides assistance in computer incident investigations.
- Performs vulnerability assessments including development of risk mitigation strategies.
Qualifications
Required:
- BS and 8+ years of experience; Masters and 6+ years of experience; additional experience may be considered in lieu of a degree
- TS/SCI level clearance is required
- Proven ISSO expertise across a large-scale enterprise Information Technology (IT) program
- Familiar with RMF and DoDAF 2.0 processes and standards
- Familiar with Scrum methodologies
- IAM Level I certification required
- Proven experience performing security engineering across enterprise systems and networks.
- Proven experience performing Systems Security tasks including: Security Information and Event Monitoring (Splunk); Endpoint security (HBSS); password and credential management (CyberArk); Compliance and vulnerability scanning (ACAS / Nessus); and Code Scanning (Fortify).
- Proven experience performing Network Security for Firewalls, Intrusion Detection Systems (IDS)/ Intrusion Prevention Systems (IPS)
- Proven experience with Cisco products (Cisco Security Manager, Cisco FireSight Management Center, Cisco Firewall Service Modules (FWSM), Cisco IPS/IDS modules, Cisco Firepower IDS/IPS, Advance Malware Protection (AMP) services, Cisco Identity Services Engine (ISE) services, etc.
Desired:
- ITILv4 Foundation Certification desired
Peraton Overview
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.
Target Salary Range
$135,000 - $216,000. This represents the typical salary range for this position based on experience and other factors.Tags: ACAS Audits Automation Clearance Compliance Cyberark DoD Endpoint security Firewalls IAM IDS Intrusion detection Intrusion prevention IPS ISSE Malware Monitoring Nessus Network security RMF Scrum Splunk TS/SCI Zero Trust
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.