Information System Security Engineer (ISSE)

Clarity Innovations is a trusted national security partner, dedicated to safeguarding our nation’s interests and delivering innovative solutions that empower the Intelligence Community (IC) and Department of Defense (DoD) to transform data into actionable intelligence, ensuring mission success in an evolving world.

Our mission-first software and data engineering platform modernizes data operations, utilizing advanced workflows, CI/CD, and secure DevSecOps practices. We focus on challenges in Information Warfare, Cyber Operations, Operational Security, and Data Structuring, enabling end-to-end solutions that drive operational impact.

We are committed to delivering cutting-edge tools and capabilities that address the most complex national security challenges, empowering our partners to stay ahead of emerging threats and ensuring the success of their critical missions. At Clarity, we are people-focused and set on being a destination employer for top talent, offering an environment where innovation thrives, careers grow, and individuals are valued. Join us as we continue to lead innovation and tackle the most pressing challenges in national security.

Job Title: Information Systems Security Engineer (ISSE)
Location: Remote
Job Type: Full-Time
Clearance Level: Must be clearable to DoD Secret (clearable to DoD Top Secret is a plus, no active clearance is required at onboarding).
Certification Requirements: DoD 8570 & 8140 Certification Compliance

Position Overview:

We are seeking an experienced Information Systems Security Engineer (ISSE) with a robust background in Governance, Risk Management, and Compliance (GRC) and Risk Management Framework (RMF) processes for DoD contracts. The ideal candidate will have extensive experience working with NIST 800-53 controls, STIGs, and SRGs, and will also have expertise in Cloud Service Provider (CSP) security, specifically within AWS, as well as Azure and GCP environments. The candidate should be skilled in creating policies around critical security areas such as PII, Incident Response Plans (IRP), Concept of Operations (ConOps), and Continuous Monitoring (ConMon), etc..

In addition to GRC and cloud security, this role requires hands-on experience in DevSecOps tooling, including building and maintaining GitLab and GitHub CI/CD pipelines, configuring and troubleshooting builds, implement security tooling into the pipeline, performing code reviews, and integrate security into the development lifecycle with the development and engineering teams. The ISSE must also be familiar with SIEM configuration, log filtering, security event response, and to a limited extent purple teaming activities, providing broad cybersecurity support across various technical domains.

The ISSE must be clearable to at least DoD Secret and be able to provide evidence of compliance with DoD 8570 and/or DoD 8140 certification requirements.

Responsibilities:

• Governance, Risk, and Compliance (GRC):
• Lead and support RMF processes for DoD contracts, ensuring compliance with NIST 800-53, security STIGs, SRGs, and other applicable standards.
• Create and maintain security policies and procedures for areas like PII, Incident Response (IRP), Concept of Operations (ConOps), and Continuous Monitoring (ConMon), as well as other policy documents needed to support the RMF and GRC process..
• Assist in the development of system security plans (SSPs) and ensure ongoing assessment and monitoring of compliance with security controls.
• Cloud Security & Cloud Service Providers (CSP):
• Implement and manage security controls in AWS, with experience in Azure and GCP environments being a plus.
• Configure and manage cloud security tools and services, including but not limited to IAM, CloudTrail, GuardDuty, and Config in AWS.
• Ensure cloud systems comply with applicable DoD and NIST 800-53 standards, integrating security best practices into cloud architecture and operations.
• Provide supporting evidence of compliance with DoD policy and NIST 800-53 controls in various CSP environments.
• Perform security risk assessments, vulnerability scanning, and mitigation strategies in multi-cloud environments.
• DevSecOps & CI/CD Pipeline:
• Configure and manage DevSecOps tools within GitLab and GitHub CI/CD pipelines.
• Integrate security tooling (e.g., static/dynamic analysis, dependency checks) into the CI/CD pipeline to ensure security vulnerabilities are addressed during the development cycle.
• Perform code reviews, identifying and mitigating security vulnerabilities in the code base.
• Security Incident Management:
• Develop and refine Incident Response Plans (IRP) and conduct tabletop exercises to test the effectiveness of incident response strategies.
• Use SIEM tools and/or other log management tooling to configure and optimize log filtering, aggregation, and correlation for enhanced event detection and mitigation.
• Purple Teaming:
• Collaborate with red and blue teams in purple teaming exercises to simulate attacks and improve security controls, identifying vulnerabilities and providing actionable remediation recommendations.
• Cybersecurity Engineering & Support:
• Assist in implementing security controls and countermeasures across systems, networks, and applications, ensuring compliance with both DoD and organizational requirements.
• Support risk management and vulnerability assessments for the protection of cloud and on-premise infrastructure and be able to articulate the key distinctions between the two types of environments.
• Work closely with development teams to ensure the security of software development and deployment processes.
• Technical Documentation & Reporting:
• Create and present detailed reports for leadership, technical teams, and compliance auditors regarding the security posture of cloud-based and on-prem systems.
• Document technical procedures, security configurations, and risk management strategies for internal and external stakeholders.

Required Qualifications:

• Education: Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
• Experience:
• 1-3 years of experience in Information Systems Security Engineering with a focus on NIST 800-53, STIGs, and SRGs for DoD contracts.
• Hands-on experience securing AWS environments (with Azure and GCP experience being a plus), ensuring compliance with cloud security best practices and DoD security standards.
• Experience with RMF processes including assessment, authorization, and continuous monitoring.
• Strong expertise in DevSecOps practices and toolsets (e.g., GitLab, GitHub, Jenkins, Docker, Kubernetes).
• Experience with SIEM systems (e.g., Splunk, ELK Stack) for event detection, analysis, and response.
• Experience developing and implementing Incident Response Plans (IRP) and participating in tabletop exercises.
• Skills:
• Proficiency in configuring security tools within cloud platforms like AWS, Azure, and GCP (IAM, GuardDuty, CloudTrail, Config).
• Strong coding and scripting skills (e.g., Python, Bash, PowerShell) for automation, security testing, and CI/CD pipeline integration.
• Ability to perform code reviews and ensure secure coding practices with the Development and Engineering teams.
• Familiarity with log management and SIEM configuration for security event correlation and response.
• Certifications:
• Must hold or be able to obtain and maintain a Secret clearance.
• DoD 8570 and 8140 certification compliance required (e.g., Security+, SSCP, GSEC, or other equivalent certifications).
• AWS Certified Security Specialty or similar cloud certification is highly preferred.
• CISSP, CCSP, CompTIA CASP+/SecurityX, or similar cybersecurity certifications are a plus.

Preferred Qualifications:

• Hands-on experience with multiple cloud environments (AWS, Azure, GCP).
• Experience with containerized applications (e.g., Docker, Kubernetes) and securing them in the cloud, with particular emphasis on EKS and ECS.
• Familiarity with vulnerability management tools (e.g., Nessus, Qualys).
• Experience with cloud-native security tools and architectures.

Soft Skills:

• Excellent communication skills, both verbal and written, with the ability to interact effectively across technical and non-technical teams.
• Ability to manage multiple priorities in a dynamic and fast-paced environment.
• Strong analytical and problem-solving skills, with a keen attention to detail.

Additional Information:

• This role requires the ability to be clearable and potentially maintain a DoD Secret clearance (clearable to DoD Top Secret Clearance is a plus).
• Some travel may be required for this position.
• Must meet and maintain DoD 8570/8140 certification requirements for continued employment.

If you are passionate about cybersecurity, have hands-on experience with cloud security, and are eager to work in a dynamic environment supporting DoD systems, we encourage you to apply!

We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.