Information System Security Engineer (ISSE)

Overview: CDT is currently seeking a skilled Information System Security Engineer to execute the implementation of security standards to a diverse set of systems for St. Petersburg, FL.  An advanced understanding of engineering principles, as well as vulnerability, compliance, and patch management is required. A working understanding of the Radio Frequency spectrum is desired.

Clearance Requirements: An active Secret clearance is required, TS/SCI preferred. All candidates must be U.S. Citizens. Applicants who do not meet these requirements will not be considered.

Responsibilities:

• Lead the security design, configuration, hardening, testing and monitoring of a wide variety of moderately complex Information System technologies independently or as part of a larger design team.
• Performs secure engineering and vulnerability testing on information systems to include but not limited to: Physical and Virtual Operating Systems, Web Applications, Databases, and Networking Devices. Applies knowledge of current compliance standards and associated technical controls across these technologies.
• Engages customer technical POCs as necessary throughout security architecture design and implementation activities.
• Applies knowledge and understanding of Information Assurance (IA) concepts, practices, and procedures using established DoD security policies and standards to mitigate security risks.
• Support the establishment of continuous monitoring processes and procedures to streamline AO/DAO ATOs (authorization to operate) in accordance with current DOD and IC policy guidance
• Implement security monitoring solutions as required to meet IA requirements for Risk Management Framework (RMF) as applies to systems and sensors allocated to regions/AORs as outlined by end customer & users.
• Identify and mapping NIST 800-53 controls, and DISA Control Correlation Identifiers (CCI) to appropriately cover new controls to renew authorization to operate for systems and capabilities for review by Authorizing Officials (AO)
• Ability to coordinate system updates and configuration changes with the customer and maintain version history for compliance with customer requirements. 
• Ability to implement/engineer security safeguards (e.g. STIGs) on enterprise, embedded, and standalone/airgapped systems to a variety of hardware platforms (Compliance Management)
• Ability to mitigate/remediate issues in regard to vulnerability management.
• Ability to fully patch systems (Windows, Linux, android, IOS) utilizing patch management procedures
• Create security test cases and assist in the performance general security testing
• Ability to engineer solutions based on customer requirements, needs and demands.

Technical Areas of Expertise:

• Experience with RMF process and requirements (NIST 800-53)
• Experience with virtualized and standalone environments (VMware)
• Experience with patch management solutions
• Experience with standard forensic practices, imaging software, tools, and techniques
• Experience with Security Technical Implementation Guide (STIG) experience
• Experience with Vulnerability Management (Nessus, NexPose, OpenVAS, etc)
• ELINT, Radio Frequency, Electronic Warfare, and/or SIGINT experience a plus
• Translating technical customer requirements into business process and tasking
• Technical consulting both buyer and end user customer personnel in a complex environment
• System Administration experience with Linux and Windows
• Experience with administration and forensic practices with mobile platforms is a plus

Required Qualifications:

• Bachelor’s degree in Computer Science, Engineering or Information Technology or related technical field and 6+ years of experience in information security-related technical field or Master degree with 4+ year of information security-related technical field.
• Experience performing security operations, vulnerability management, security testing, system patching, log analysis, intrusion detection and/or device technologies administration. Knowledge of RMF, Window/Linux Operating Systems, Stigs, ACAS, HBSS and/or related technologies.

Desired Qualifications:

• Cyber Security Certifications desired (CompTIA Security+, CEH, etc.)
• Experience using tactical sensors and technologies within the United States Special Operations Command (SOCOM) and special operations community
• Bachelor's Degree in Computer Science, cyber security, or a related technical discipline preferred, or the equivalent combination of education, professional training or work experience.

Why Join Cyber Defense Technologies?
At CDT, we offer a collaborative and inclusive work environment where your expertise in system security can help shape the future of cybersecurity and engineering solutions.
Compensation and Benefits:

• Competitive salary based on experience.
• Comprehensive benefits package, including health, dental, and retirement plans.
• Opportunities for professional development and career advancement.

CDT is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity employer making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.

Apply Now:
If you are a proactive Information System Security Engineer (ISSE) and thrive in dynamic environments, we encourage you to apply and join the CDT team!