Apply on Employer Site

Modern Technology Solutions, Inc. (MTSI) · 3 days ago

Information Systems Security Engineer (ISSE)

Dayton, OH

Full-time

Onsite

Senior Level, Lead/Staff

8+ years exp

Modern Technology Solutions, Inc. (MTSI) is seeking an Information Systems Security Engineer (ISSE) to play a critical role in securing the organization's information systems. The engineer will design, implement, and maintain security measures while collaborating closely with IT teams and stakeholders to ensure security is integrated throughout capability development and operations.

Information Technology

Growth Opportunities

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Develop and implement security architectures and designs for both new and existing systems, ensuring alignment with industry best practices, adherence to relevant regulatory requirements, and compliance with established organizational security policies

Conduct security risk assessments and vulnerability analyses to proactively identify potential weaknesses and vulnerabilities within systems, and develop and recommend effective mitigation strategies to address these identified risks

Evaluate and carefully select appropriate security technologies and solutions to effectively address specific and evolving security needs; create and maintain comprehensive security documentation, including detailed system security plans (SSPs), thorough security control assessments (SCAs), and comprehensive security test and evaluation (ST&E) reports

Configure and maintain a wide range of critical security tools and technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), security information and event management (SIEM) systems, advanced endpoint detection and response (EDR) solutions, and vulnerability scanners, ensuring optimal performance and effectiveness

Implement and rigorously enforce security policies and procedures across all systems and networks to ensure consistent security posture; collaborate closely with IT teams to seamlessly integrate security controls into capability development systems, experiments, and prototypes, encompassing requirements gathering, design, testing, and deployment; and automate security tasks and processes to improve overall efficiency and significantly reduce the risk of human error

Continuously monitor security logs and alerts to proactively identify potential security incidents and breaches, enabling swift and effective response actions

Thoroughly investigate security incidents and breaches to determine root causes and scope of impact, and develop and implement comprehensive and effective remediation plans to address the identified issues

Actively participate in incident response activities, including containment, eradication, and recovery efforts, to minimize the impact of security incidents; and develop and maintain robust incident response plans and procedures to ensure coordinated and effective responses

Ensure that all systems and applications strictly comply with relevant security standards and regulations, such as NIST, ISO 27001, HIPAA, PCI DSS, and GDPR, maintaining a strong security posture and mitigating compliance risks

Develop and maintain engaging security awareness training programs for employees to promote a security-conscious culture; collaborate closely with IT teams, developers, and other stakeholders to seamlessly integrate security into all aspects of the organization's operations; effectively communicate security risks and issues to management and other stakeholders in a clear and concise manner; provide expert security guidance and support to other IT staff; actively participate in security meetings and relevant industry conferences; and mentor junior security staff to foster their professional development

Qualification

Information security engineeringSecurity toolsTechnologiesCloud security conceptsNetwork security protocolsScripting languagesOperating systemsCryptography knowledgePenetration testingDevSecOps practicesSecurity certificationsAnalytical skillsCreative problem-solvingInterpersonal skills

Required

8+ years experience in information security engineering or a related role

Strong understanding of security principles, technologies, and best practices

Experience with security tools and technologies, such as firewalls, IDS/IPS, SIEM, EDR, and vulnerability scanners

Knowledge of network security protocols and technologies, such as TCP/IP, DNS, and VPNs

Experience with cloud security concepts and technologies (e.g., AWS, Azure, GCP)

Familiarity with scripting languages (e.g., Python, PowerShell) for automation

Experience with operating systems (e.g., Windows, Linux) and virtualization technologies

Knowledge of cryptography and encryption technologies

Master's degree in Computer Science, Information Systems, Cybersecurity, or a related field. 8 additional years of relevant experience may be substituted for master's degree

Must possess an active DoD TS/SCI with in-scope SSBI and SAP eligibility

Please note: U.S. Citizenship is required