Information System Security Engineer (ISSE) III jobs in United States
cer-icon
Apply on Employer Site
company-logo

The One 23 Group · 2 months ago

Information System Security Engineer (ISSE) III

positionHerndon, VA
timeFull-time
remoteOnsite
senioritySenior Level
date7+ years exp

The One 23 Group is dedicated to excellence in government services, empowering clients in various sectors with advanced capabilities. The role involves providing cybersecurity support, including risk management and compliance tasks, to ensure the security and integrity of information systems.

Information Technology & Services
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Assessment & Authorization (A&A)
Cybersecurity Compliance and Audit Readiness
Information Assurance Vulnerability Management (IAVM)
Vulnerability Scanning and Remediation
Application and Implementation of Security Technical Implementation Guides (STIGs) and Security Requirements Guide (SRGs)
The ISSE staff will assist with the developing, maintaining, and tracking Risk Management Framework (RMF) system security plans which include System Categorization Forms, Platform Information Technology (PIT) Determination Checklists, Assess Only (AO) Determination Checklists, Implementation Plans, System Level Continuous Monitoring (SLCM) Strategies, System Level Policies, Hardware Lists, Software List, System Diagrams, Privacy Impact Assessments (PIA), and Plans of Action and Milestones (POA&M)
Execute the RMF process in support of obtaining and maintaining Interim Authority to Test (IATT), AO approval, Authorization to Operate (ATO), and Denial of Authorization to Operate (DATO)
Identify and tailor IT and CS security control baselines based on RMF guidelines and categorization of the RMF boundary. Perform Ports, Protocols, and Services Management (PPSM). Perform IT and CS vulnerability-level risk assessments
Execute security control testing as required by a risk assessment or annual security review (ASR)
Mitigate and remediate IT and CS system level vulnerabilities for all assets within the boundary per STIG requirements
Develop and maintain Plans of Actions and Milestones (POA&M) in Enterprise Mission Assurance Support Service (eMASS)

Qualification

Risk Management Framework (RMF)Cybersecurity ComplianceVulnerability ScanningSecurity Technical Implementation Guides (STIGs)Information Assurance Vulnerability Management (IAVM)Plans of ActionsMilestones (POA&M)IAT-III Certification’s degreeSoftware/hardware updatesConfiguration changes

Required

Bachelor's degree in computer science, information technology, or an equivalent technical degree from an accredited college or university
Seven (7) years professional experience capturing and refining information security operational and security requirements and ensuring those requirements are properly addressed through purposeful architecting, design, development, and configuration; and implementing security controls, configuration changes, software/hardware updates/patches, vulnerability scanning, and securing configurations
IAT-III Certification (any Of The Following): CASP+ CE, CCNP Security, CISA, CISSP (or Associate), JGCED, GCIH, CCSP
US Citizen, Secret Clearance

Company

The One 23 Group

twitter
company-logo
Defining Excellence in Government Service We are The One 23 Group – your strategic partner in navigating the complexities of government operations.
people-size201-500 employees

Funding

Current Stage
Growth Stage
Company data provided by crunchbase