Apply on Employer Site

TekSynap · 1 month ago

Information System Security Engineer (ISSE) - Senior

Huntsville, AL

Full-time

Onsite

Senior Level, Lead/Staff

8+ years exp

TekSynap is a fast-growing high-tech company that supports government customers with comprehensive information management environments. The Information System Security Engineer (ISSE) is responsible for identifying security risks, designing secure information systems, and ensuring compliance with standards like NIST and RMF, while mentoring a team of security professionals.

ComputerInformation ServicesInformation Technology

Growth Opportunities

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Lead, mentor, and supervise a team of security professionals responsible for the end-to-end implementation of the RMF lifecycle for IT systems

Oversee and coordinate activities within the Prepare step, ensuring roles, responsibilities, and risk management strategies are clearly defined and maintained

Guide system categorization efforts to ensure all information systems are appropriately classified based on mission/business impact and regulatory requirements

Direct the selection, tailoring, and documentation of security controls aligned with system categorizations, risk appetite, and compliance requirements

Oversee the implementation of technical, operational, and management controls throughout system and application lifecycles, with a particular focus on quality and completeness of all deliverables

Ensure comprehensive security control assessments are planned, executed, and documented to validate the effectiveness of implemented safeguards

Prepare risk management documentation for system authorization and executive decision-making

Direct ongoing monitoring and continuous assessment activities, collecting metrics to adjust security strategies and ensure sustained compliance

Serve as a principal technical advisor on cybersecurity, bringing subject-matter expertise to risk analysis, incident response, system remediation, and audit support efforts

Foster a culture of security awareness, providing technical guidance and training to both team members and stakeholders

Track, report, and communicate status, risks, and improvement opportunities related to security engineering activities to leadership and stakeholders

Maintain up-to-date knowledge of RMF, NIST guidance, and industry best practices in support of continuous process improvement

Qualification

Risk Management Framework (RMF)NIST complianceCybersecurity expertiseSecurity tools operationCertifications CISSPCertifications CASPCertifications etc.Technical ExpertiseFoster InnovationOral CommunicationWritten CommunicationStrategic ThinkingInitiativeResults OrientedTeamwork

Required

Must hold an active TOP SECRET clearance with the ability to obtain an SCI

Familiarity with the use and operation of security tools including Tenable Nessus and/or Security Center, IBM Guardium, HP WeblInspect, Network Mapper (NMAP), and/or similar applications

Minimum 8 years' experience, or equivalent education/experience. For example: Doctorate plus 6 years of experience; Master's plus 6 years of experience; Associates plus 10 years of experience; or H.S./GED plus 14 years of experience

Preferred

Experience with Joint Cybersecurity Authorization Management (JCAM) and/or Xacta

Hold at least one of the following certifications: Certified Information Systems Security Professional (CISSP), Global Information Security Professional (GISP), or the CompTIA Advanced Security Practitioner (CASP), Certified Secure Software Lifecycle (CSSLP), CISSP Special Focus - Information System Security Engineering Professional (ISSEP), CISSP Special Focus - Information System Security Architecture Professional (ISSAP), and/or other certifications exemplifying skill sets such as those described in DoD Instruction 8570.1 Information Assurance Management (IAM) Level II proficiency

A bachelor's and/or advanced degree in Computer Science, Cybersecurity, or IT-related discipline is preferred