Information System Security Engineer

Essential Functions:

• Plan, design, and implement security controls and measures to protect the organization's information systems and networks
• Evaluate and assess security risks and vulnerabilities, and develop strategies to mitigate them
• Develop and implement security policies, procedures, and guidelines to ensure compliance with organizational policies and regulatory requirements
• Work with engineering team to identify and document security solutions, including firewalls, intrusion detection/prevention systems, antivirus, and data encryption systems as required by parent organization.
• Conduct security assessments and audits of information systems and networks, and recommend improvements to security controls and measures
• Stay up to date with emerging trends and technologies in information security, and recommend improvements to the organization's security posture
• Provide technical guidance and support to IT teams on security-related issues
• Ensure that information systems and networks are compliant with organizational policies and procedures, as well as any applicable regulatory requirements

Physical Demands:

Physical demands of this position include ability to:

• Be independently mobile.
• Communicate effectively with co-workers and customers.
• Withstand prolonged periods of sitting at a desk and computer use.

Reasonable accommodation will be made to enable individuals with disabilities to perform the essential functions.

Required Experience:

• Strong understanding of information security principles and methodologies
• Experience designing and implementing security controls and measures for information systems and networks
• Familiarity with security standards and regulations, such as NIST SP 800-53 and DOD RMF
• Experience conducting security assessments and audits, and recommending improvements to security controls and measures
• Experience with security solutions such as firewalls, intrusion detection/prevention systems, and data encryption systems
• Excellent communication and interpersonal skills, with the ability to work effectively with users and stakeholders at all levels
• Strong analytical and problem-solving skills, with the ability to identify security risks and vulnerabilities, and develop strategies to mitigate them
• Experience with security training and awareness programs
• DoD 8570 IAT Level II Certification (e.g. Security+) or the ability to obtain the certification within 90 days
• Years of Experience: 10+ years of experience in information security, with experience in designing and implementing security controls and measures for information systems and networks. Experience with security assessments and audits is also preferred.
• Desired Education: Bachelor's degree in Computer Science or a related field (preferred).
• Location: Chantilly, VA (On-site)
• Clearance: Active TS/SCI w/ ability to obtain CI Poly

Desired Skills:

• Experience with cloud computing platforms such as AWS or Azure
• Experience with security-related tools such as vulnerability scanners, SIEMs, and endpoint protection systems
• Knowledge of network protocols and technologies, such as TCP/IP, DNS, and VPNs
• Scripting experience in Bash, Python, or Perl

EEO Minority/Disabled/Veteran/Female