Information System Security Engineer @ PRISM | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
Information System Security Engineer jobs in Washington, DCH1B Visa Sponsored Information System Security Engineer jobs in Washington, DC
30 applicantsPosted by Agency
job-post-linkOriginal Job Post
company-logo

PRISM ยท 3 days ago

Information System Security Engineer

positionWashington, DC
timeFull-time
remoteHybrid
senioritySenior Level
date7+ years exp

Wonder how qualified you are to the job?

ftfMaximize your interview chances
ConsultingInformation Technology
check
H1B Sponsorship
check
Growth Opportunities
Hiring Manager
T.J. Ferguson
linkedin

Insider Connection @PRISM

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Develop and maintain IT security controls per NIST SP 800-53 and Agency Security Policy standards.
Collect and validate control implementation statements from subject matter experts.
Consult with experts to ensure work instructions align with agency security standards.
Conduct risk assessments for security issues and propose resolutions.
Document and communicate control deficiencies for POA&M consideration.
Support Continuous Security Monitoring for compliance with agency Security Policy
Assist in developing security policies, ensuring compliance, and updating documentation.
Conduct security reviews for changes impacting hardware, software, baselines, connections, or applications.
Review and assess POA&M outputs, recommending additional work or closure.
Support IT Governance, Risk, and Compliance activities, including standards management.
Provide information for status reports, briefings, schedules, and project plans in written and oral form.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Security certifications CISSPSecurity certifications CISMSecurity certifications Security+Information system engineering/administrationIT security controlsMicrosoft Office 365AzureCiscoOracleOMB M-22-09EO 14028NIST Risk ManagementCybersecurity FrameworkFISMANIST 800-53IT control processesWeb application securityOWASP Top 10Cloud security principlesAWSGoogle CloudGRC frameworks/tools ArcherGRC frameworks/tools eMASSGRC frameworks/tools CSAMSA&A tools (Xacta)Cyber-attack patternsNetwork security principlesFirewallsIntrusion detection/prevention systems (IDS/IPS)VPNs

Required

Undergraduate degree with nine years or Graduate degree with seven years of IT control or IT security experience in a technical environment with a variety of IT systems
One or more current Security certifications (CISSP, CISM, Security+)
Experience serving in an information system engineer/administrator role implementing security controls
A solid understanding of IT security controls, tools, and concepts
Experience working in a technical environment with IT platforms such as Microsoft Office 365, Azure, Cisco, Oracle, etc
Understanding of OMB M-22-09 and EO 14028
Experience with NIST Risk Management and Cybersecurity Framework, FISMA, NIST 800-53, and IT control processes
Experience implementing security measures within information systems engineering projects
Understanding of web application security concepts, such as OWASP Top 10 vulnerabilities
Knowledge of cloud security principles and best practices, particularly for major cloud platforms like AWS, Azure, or Google Cloud
Familiarity with GRC frameworks/tools (Archer, eMASS, CSAM) and SA&A tools (Xacta)
Knowledge of cyber-attack patterns, Tactics, Techniques, and Procedures
Ability to adapt security processes/tools to evolving landscapes and risk scenarios
Proficiency in network security principles, including firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, and secure network architectures
Strong understanding of operating systems (e.g., Windows, Linux/Unix) and their security features and vulnerabilities
Knowledge of encryption protocols and techniques, such as SSL/TLS, AES, RSA, etc
Familiarity with security assessment tools and techniques, including vulnerability scanning, penetration testing, and ethical hacking
Experience with security information and event management (SIEM) systems for log analysis and threat detection
Fluency in spoken/written English for technical content, with strong communication skills
Experience producing high-quality deliverables with minimal edits, quick review, and feedback on federal security doctrine
Ability to thrive in a fast-paced environment, outstanding customer service skills
Ability to document processes, explain complex policies in simple terms
Familiarity with latest IT trends, security standards, excellent analytical thinking, and problem-solving skills

Company

PRISM

twittertwittertwitter
company-logo
PRISM is devoted to modernization and innovation within the world of technology, security, and IT enterprise solutions.
dateFounded in 1994
location
Reston, Virginia, USA
people-size51-200 employees
web-link
https://www.prisminc.com

H1B Sponsorship

PRISM has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2021 (4)
2020 (2)

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
Mark Johnson
CEO
linkedin
Company data provided by crunchbase
logo

Orion

Your AI Copilot