Apply on Employer Site

Parsons Corporation · 3 months ago

Information Systems Security Engineer, II

US - VA, Fort Belvoir

Full-time

Hybrid

Mid, Senior Level

$87K/yr - $152K/yr

5+ years exp

Parsons Corporation is seeking an Information Systems Security Engineer II to join their team, focusing on maintaining cybersecurity for their portfolio. The role involves implementing security policies, ensuring compliance with federal regulations, and advising on information systems security matters.

Building MaterialConstructionConsultingIndustrial EngineeringInformation TechnologyInfrastructureMilitarySecurity

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Ensure compliance with applicable security standards, such as NIST SP 800-53, and other federal regulations (such as FISMA, NIST 800-171, JSIG, and DFARS)

Manage the program of record (User Activity and Monitoring) and ensure compliance with applicable federal regulations

Coordinate with leadership to ensure security practices align with organizational objectives by developing and enforcing security policies, standards, and procedures

Serve as a principal advisor on all matters, technical and otherwise, involving the security of information systems under his/her purview

Support security use case development in Splunk Enterprise Security (ES) for security incident response analysts

Validate and verify system security requirements

Develop and review system security design

Participate in system planning, development, and deployment activities to ensure adherence to security standards and requirements

Recommend system-level solutions to resolve security requirements

Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures, acting as an advisor the Government ISSM on ATO extensions, body of evidence reviews

Develop cybersecurity documentation in support of customer Risk Management Framework (RMF) process; in accordance with NIST SP 800-37 Rev 2

Identify, quantify, and evaluate the costs/benefits of security functions and considerations to inform analysis of alternatives, engineering trade-offs, and risk treatment decisions

Qualification

Active TS/SCI clearanceSplunk experienceRMF documentationDoD 8570 IAT Level II certificationNetwork securitySystem securityEMassExperience in SOC environmentCloud securityCommunication skills

Required

Active TS/SCI clearance

B.A./B.S. in Information Security System Engineering, Information Assurance, Computer Science, or related discipline; OR 7+ years of equivalent IT experience

5 years' experience as ISSE or relatable responsibilities (Work experience may be adjusted for highly specialized knowledge or uniquely applicable experience)

2+ years of hands-on experience with Splunk, network security and system security, supporting security information and event management tools (SIEMs)

Direct experience reviewing and developing RMF assessment and authorization documentation (e.g., System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POAMs)

Familiarity with Systems Security Engineering (SSE) documentation (e.g., Cybersecurity Strategies, Information Support Plans, Program Protection Plans (PPPs)

DoD 8570 IAT Level II certification(s) (SSCP, Security+, CCNA-Security, or GSEC certification)

Experience working with eMass

Experience with, or interest in, learning, deploying, and maintaining Splunk SOAR

Good verbal and written communication skills