Information System Security Engineer

1 Month ago • 10 Years + • Cyber Security

Job Summary

Job Description

AnaVation is seeking a dedicated Information System Security Engineer (ISSE) to join their team, responsible for the development, operations, and maintenance of networked systems for digital forensic investigations. The role involves ensuring system security posture through planning, analysis, development, and implementation of security programs, infrastructure, applications, and Security Assessment and Authorization (SAA). The ISSE will develop compliance and standardization within customer policies, work with government clients to maintain confidentiality, integrity, and availability of systems, and prepare documentation for compliance. Key responsibilities include identifying IA vulnerabilities, coordinating with teams for mitigation, reviewing vulnerability and compliance scans, preparing SAA packages for authority-to-operate (ATO), attending Configuration Control Board meetings, coordinating security incident responses, and assessing current and evolving security threats. The position requires strong communication skills, ability to work independently and as part of a team, and demonstrated experience with the Federal ATO process.
Must have:
  • 10+ years experience assessing systems against NIST SP 800-53
  • Experience with Risk Management Framework (RMF)
  • Bachelor's degree in Computer Security or related field
  • Active Top Secret clearance
  • Ability to obtain CI polygraph
Good to have:
  • Experience working on an Agile team
  • Experience with federal law enforcement organization
  • Willingness to implement Lean principles, Agile engineering, DevSecOps
  • Technical background knowledge
  • Understanding of taclans, coding, and scripts
  • Splunk and Tenable experience
  • Ability to read technical diagrams and dataflows
  • Understanding of JRC and RMF steps
  • Team-oriented and collaborative personality
  • Experience with cyber-risk and compliance management systems
  • Experience configuring and assessing vulnerability scans
  • Knowledge of operating systems and network security
  • Knowledge of SPLUNK software
  • Knowledge of Taclane, encryption devices, and COMSEC
Perks:
  • Generous cost sharing for medical insurance
  • 100% company paid dental insurance
  • 100% company paid long-term and short-term disability insurance
  • 100% company paid vision insurance
  • 401k plan with generous match
  • Competitive Pay
  • Generous paid leave and holiday package
  • Tuition and training reimbursement
  • Life and AD&D Insurance

Job Details

Be Challenged and Make a Difference 

In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture. 

Description of Task to be Performed:    
AnaVation is looking for a dedicated Information System Security Engineer (ISSE) to join our team. This position is part of a talented technical team responsible for the ongoing development, operations and maintenance of several networked systems supporting digital forensic investigations running primarily on Windows and utilizing virtual and cloud environments. The ideal candidate must be a self-starter with strong work habits, is able to complete task independently while working as part of a team and have demonstrated career experience as an ISSO or ISSE and with the Federal ATO process.

Functional Responsibilities:
Senior level capabilities regarding Information system security. Knowledgeable of current Information Assurance (IA) technologies to the architecture, design, development, evaluation, and integration of applications, systems, and networks to maintain the system security posture. Develops compliancy and standardization within the customer's policies regarding various information systems. Work closely with Government customers to ensure the confidentiality, integrity, and availability of systems, applications, networks, and data through the planning, analysis, development, implementation, maintenance, and enhancement of information systems security programs; infrastructure; application; Security Assessment and Authorization (SAA), IA policy directives (PD) and guides (PG); and IA Security tools (e.g., Tenable.io, Nessus Pro, NMap, etc.).

The ISSE shall:
•Have excellent verbal and written communication skills to be able to accurately relate requirements and document all within the appropriate security document and/or within the RMF system and coordinate with program, other system(s), and security personnel.
•Prepare documentation from templates such as, but not limited to, Configuration Management Plan (CMP), Incident Response Plan (IRP), Information System Contingency Plan (ISCP), and Plan of Action and Milestones (POA&M) to ensure compliance with customer PDs and PGs and Federal IA requirements as well as coordinate review(s) and approvals.
•Must be able to discern the program policies and procedures, identify areas that need work and bring up to management for resolution.
•Identify IA vulnerabilities and coordinate with the Infrastructure and Development teams to correct, mitigated or apply for an exception via the POA&M processes.
•Review vulnerability (i.e., patches, updates, etc.) and compliance (i.e., Security Content Automation Protocol (SCAP) and/or Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG)) scans on the infrastructure and applications to ensure patch and configuration compliance (on-premises and in the cloud (Azure preferred))
•Prepares SAA package(s) to obtain and maintain an authority-to-operate (ATO), authority-to-test (ATT), or other SAA authority types for all systems and applications.
•Attend Configuration Control Board (CCB) meetings and review all change requests for impact to the system/application security posture(s) and applicable Federal and customer PD and PG compliance requirements; and document decisions within the CMP.
•Coordinate security incident and high priority compliance responses with the Enterprise Security Operations Center (ESOC).
•Represent program security interests in various meetings within and outside of the program.
•Schedule and conduct meetings with pertinent program personnel to address findings to determine appropriate path forward and document within the CMP and, if necessary, POA&M.
•Coordinates with other system Information System Security Officers (ISSO) to ensure that their requirements for interconnection, policy and procedures are met and all documentation is provided and updated as necessary.
•Ability to assess current and evolving security threats in an operational environment.
•With an appropriate amount of Government PM guidance, works independently to carry out all technical requirements as directed by the Government PM, Information System Security Representative, Information System Security Manager, and Authorizing Official in a timely manner.

 
This position is on-site in Huntsville, AL and requires a Top Secret clearance and the ability to obtain an CI polygraph

Required Qualifications:
  • Ten (10) years of experience or more assessing and documenting results for system(s), infrastructure(s) and applications (on-premises and cloud (i.e., AWS GovCloud and/or Azure GovCloud)) against NIST SP 800-53 security controls and SP 800-171 Risk Management Framework (RMF) processes.
  • Bachelor of Science (B.S.) Degree in Computer Security or related field of study; (ISC)2 Information Security Certification(s) (e.g., CISSP, CAP, etc.); or in lieu of education, an additional five (5) years of relevant experience that addresses all requirements of the position.
  • Requires an Active Top Secret clearance and the ability to obtain an CI polygraph

Day to Day Expectations:
  • Experience working on an Agile team
  • Experience working with a federal law enforcement organization
  • Willingness to implement Lean principles, Agile engineering and DevSecOps
  • Desire longevity on the project.
  • Technical background desired, knowledge broader in scope.
  • Have an understanding of taclans, basic coding, and scripts.
  • Splunk and Tenable experience desired.
  • Need to be able to read technical diagrams, dataflows, create workflows, read network diagrams. Understand JRC and the 6 steps of the Risk Management Framework.
  • Have a team perspective, invite collaboration, the personality needs to be one of investment. Need to connect and to learn. Be function driven. They need to have an accountability to the program, be on time, personable, positive

Desired Qualifications:
  • Experience in a cyber-risk and compliance management system (e.g., Xacta, RiskVision, etc.).
  • One (1) year experience or more configuring, performing, scheduling, reviewing, and assessing vulnerability (i.e., patches, updates, etc.) and compliance (i.e., Security Content Automation Protocol (SCAP) and/or Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG)) scans on the infrastructure and applications to ensure patch and configuration compliance on-premises and in the cloud (Azure preferred).
  • Technical background that will assist in assessing the NIST SP 800-53 security controls and gather evidence to support conclusions.
  • Knowledge of operating systems, network and application security to aid implementation of information security and assurance principles.
  • Knowledge of SPLUNK software and tools.
  • Knowledge of Taclane, encryption devices and COMSEC technology.  

Benefits 

·        Generous cost sharing for medical insurance for the employee and dependents 

·        100% company paid dental insurance for employees and dependents 

·        100% company paid long-term and short term disability insurance 

·        100% company paid vision insurance for employees and dependents 

·        401k plan with generous match and 100% immediate vesting 

·        Competitive Pay 

·        Generous paid leave and holiday package 

·        Tuition and training reimbursement 

·        Life and AD&D Insurance


About AnaVation 
AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team.  

If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you! 

AnaVation is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.

Similar Jobs

Image Engine - Software Engineer - Tools

Image Engine

Vancouver, British Columbia, Canada (Hybrid)
1 Month ago
Crunchyroll - Engineering Manager, tvOS

Crunchyroll

San Francisco, California, United States (Hybrid)
2 Months ago
endava - Lead Business Analyst

endava

Brisbane, Queensland, Australia (On-Site)
2 Months ago
kinesthetic games - Senior Designer / Level Designer

kinesthetic games

Guildford, England, United Kingdom (On-Site)
3 Months ago
Dentsu - Data Analyst

Dentsu

Milan, Lombardy, Italy (On-Site)
1 Month ago
Jane Street - Cybersecurity - Senior Incident Responder and Forensic Investigator

Jane Street

New York, United States (On-Site)
2 Months ago
Interactive Brokers - Client Operations Security and Fraud Prevention Analyst (Mandarin Speaker)

Interactive Brokers

Budapest, Hungary (On-Site)
1 Month ago
Optiv - Account Manager - Cybersecurity Sales

Optiv

Columbus, Ohio, United States (On-Site)
1 Week ago
Anavation - Senior Information Systems Security Engineer (ISSE)

Anavation

Clarksburg, West Virginia, United States (Hybrid)
1 Week ago
Paytm - Internal Audit - IT Security

Paytm

Noida, Uttar Pradesh, India (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Tesla - HR Business Partner

Tesla

Brandenburg, Germany (On-Site)
6 Months ago
Sprinkler - Senior Managed Services Consultant CCaaS

Sprinkler

Philippines (On-Site)
2 Months ago
Thatgamecompany - Business Development and IP Licensing Manager - China

Thatgamecompany

Shanghai, Shanghai, China (On-Site)
4 Months ago
Google - Senior Account Strategist, Mid-Market Sales, Google Customer Solutions

Google

San Francisco, California, United States (On-Site)
7 Months ago
HCL Tech - Avaloq Consultant

HCL Tech

London, England, United Kingdom (On-Site)
2 Months ago
Apple - Display Process Engineer

Apple

Cupertino, California, United States (On-Site)
1 Month ago
Hawkeye Innovations - Baseball Tracking Systems Operator

Hawkeye Innovations

Mexico City, Mexico (Hybrid)
1 Week ago
LLNL - Environment, Safety & Health Deputy Associate Director

LLNL

Livermore, California, United States (Hybrid)
1 Month ago
Visa - Sr. Analyst, Regulatory Affairs

Visa

Atlanta, Georgia, United States (Hybrid)
2 Months ago
Syniverse - Lead C/C++ Developer

Syniverse

Gurugram, Haryana, India (Remote)
1 Year ago

Get notifed when new similar jobs are uploaded

Jobs in Huntsville, Alabama, United States

Hedra - Senior Frontend Engineer

Hedra

New York, New York, United States (On-Site)
4 Months ago
Rippling - Staff Software Engineer (Backend)

Rippling

New York, United States (On-Site)
2 Months ago
Vendavo - Principal Customer Success Manager - Strategic

Vendavo

Denver, Colorado, United States (Remote)
2 Months ago
Square - Assistant Manager

Square

Austin, Texas, United States (On-Site)
1 Month ago
Game story studio (Different language) - Unity Developer

Game story studio (Different language)

San Francisco, California, United States (On-Site)
1 Month ago
Adobe - Sr. Director Product - AI Platform

Adobe

San Jose, California, United States (On-Site)
2 Months ago
Crunchyroll - Director, Software Engineering, Android

Crunchyroll

Culver City, California, United States (Remote)
8 Months ago
Glean - Senior Data Scientist

Glean

Palo Alto, California, United States (Hybrid)
1 Month ago
Daybreak Game Company LLC - Environment Artist

Daybreak Game Company LLC

Austin, Texas, United States (Remote)
6 Months ago
Nintendo - Project Specialist, Product Lifecycle Management (Bilingual Japanese)

Nintendo

Redmond, Washington, United States (Hybrid)
8 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Jane Street - Cybersecurity Detection and Response Analyst

Jane Street

Hong Kong (On-Site)
2 Months ago
GoDaddy - Principal Security Engineer

GoDaddy

United States (Remote)
2 Weeks ago
Apple - SoC Security Engineer - Platform Architecture

Apple

Cupertino, California, United States (On-Site)
2 Months ago
Mistral AI - Software Engineer, Security

Mistral AI

Paris, Île-de-France, France (Hybrid)
8 Months ago
Applied materials  - Senior Network Security Engineer - Detection & Protection

Applied materials

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Fi - Senior Security Analyst - GRC

Fi

Bengaluru, Karnataka, India (On-Site)
10 Months ago
JMA - Senior Embedded Systems Security Engineer

JMA

Syracuse, New York, United States (On-Site)
2 Months ago
Highspot - Security Engineer

Highspot

Hyderabad, Telangana, India (Hybrid)
3 Months ago
PayPal - Manager, Cybersecurity Risk

PayPal

San Jose, California, United States (On-Site)
2 Weeks ago
Arkose Labs - Security Analyst

Arkose Labs

Brisbane, Queensland, Australia (Hybrid)
2 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Quantico, Virginia, United States (On-Site)

Hanover, Maryland, United States (On-Site)

Aberdeen Proving Ground, Maryland, United States (On-Site)

Fort Belvoir, Virginia, United States (On-Site)

Fort Belvoir, Virginia, United States (On-Site)

Quantico, Virginia, United States (On-Site)

Huntsville, Alabama, United States (On-Site)

Huntsville, Alabama, United States (On-Site)

Annapolis Junction, Maryland, United States (On-Site)

Reston, Virginia, United States (On-Site)

View All Jobs

Get notified when new jobs are added by Anavation