Apply on Employer Site

Illumination Works · 1 month ago

Cyber Security Engineer - ISSM

United States

Full-time

Remote

Senior Level, Lead/Staff

10+ years exp

Illumination Works LLC is a technology partner specializing in data solutions and digital transformation. They are seeking a Cyber Security Engineer - Information System Security Manager (ISSM) to oversee security documentation, implement security controls, and maintain the operational security posture for information systems.

AnalyticsInformation TechnologySoftware

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Create/maintain and review/approve other teammates’ information security related documentation

Implement, maintain, and monitor security controls

Advise developers on integrating security requirements

Achieve and maintain Authorization to Operate classified information systems

Coordinate with sponsor and corporate security organization

Oversee Continuous Monitoring program

Maintain operational security posture for information systems

Provide security related training and guidance to program management and staff

Provide responsible oversight and management of multiple RMF packages in appropriate compliance systems

Conduct RMF process on various items including Hardware, Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS) Systems

Qualification

RMF processSecurity+ CertificationCISSP CertificationCloud security conceptsSecurity toolsSSP documentationDoD STIGsSecurity incident managementSelf-initiativeInterpersonal skillsTeam collaboration

Required

Create/maintain and review/approve other teammates' information security related documentation

Implement, maintain, and monitor security controls

Advise developers on integrating security requirements

Achieve and maintain Authorization to Operate classified information systems

Coordinate with sponsor and corporate security organization

Oversee Continuous Monitoring program

Maintain operational security posture for information systems

Provide security related training and guidance to program management and staff

Provide responsible oversight and management of multiple RMF packages in appropriate compliance systems

Conduct RMF process on various items including Hardware, Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS) Systems

Demonstrated knowledge of and experience with several of the following: current security tools; hardware/software security implementation; communication protocols; encryption techniques/tools

Experience preparing and maintaining SSPs and other security related documentation

Experience proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies, preferably on a large software or IT program

Collaborating in a team environment

Experience with DoD Security Technical Implementation Guides (STIGs), Information Assurance Vulnerability Alerts (IAVAs), Security Content Automation Protocol (SCAP) Compliance Checker (SCC)

High expertise in cloud security concepts and the FEDRAMP program

Use of scanning tools and interpreting results including ACAS

Expertise in security incident management and response

Must have experience performing the RMF process to attain Authority to Operate (ATO) in accordance with NIST 800 series guidance

Must be committed to developing and adhering to best practices and standard operating procedures

Must be a solutions-oriented team player and must possess a high level of self-initiative

Must have excellent interpersonal skills

Must have Security+ Certification

Must have CISSP Certification or able to obtain within 6 months of hire

Minimum education: Bachelor's degree in Computer Science, Cybersecurity, or comparable academic discipline

Minimum experience requirements: ten years of experience required

Must have or be willing to obtain Secret Clearance (this requires US Citizenship)