Apply on Employer Site

Mission Technologies, a division of HII · 2 weeks ago

ISSE (Engineer Info Assurance 3) - 26256

Huntsville, AL

Full-time

Onsite

Mid, Senior Level

$91K/yr - $135K/yr

5+ years exp

Mission Technologies, a division of HII, is seeking a skilled Information Systems Security Engineer (ISSE) to support the U.S. Navy's Authority to Operate (ATO) process. The role involves collaborating with cross-functional teams to ensure naval information systems meet rigorous security requirements and implementing security controls to protect sensitive data.

Defense & Space

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Oversees and manages information security program implementation within the organization or other area of responsibility. Manages strategy, personnel, infrastructure, policy enforcement, emergency planning, security awareness, and/or other resources. Acquire and manage the necessary resources, including leadership support, financial resources, and key security personnel, to support information technology (IT) security goals, and reduce overall organizational risk

Develop and maintain comprehensive RMF technical artifacts including security assessment reports, system security plans, network diagrams, and security control implementation details using authorized A&A tools to support Navy ATO processes

Serve as a liaison between technical teams, security personnel, and Navy stakeholders to coordinate all aspects of RMF Assessment & Authorization activities, ensuring alignment with cyber engineering requirements and system lifecycle management processes

Support critical testing activities including T&E, DT&E, and OT&E by providing security control validation, vulnerability assessment expertise, and documentation of test results to verify system compliance with security requirements

Apply cybersecurity expertise across the full system lifecycle, implementing RMF processes, managing change requests, conducting annual security control reviews, addressing IAVMs, supporting FISMA reporting, and performing contingency testing to maintain system authorization

Implement cost-effective, risk-balanced security controls that protect the confidentiality, integrity, and availability of Navy information systems while meeting mission objectives and operational requirements

Provide dedicated support for PTT systems' authorization and system level continuous monitoring processes, ensuring ongoing compliance with security requirements and timely remediation of identified vulnerabilities

Respond to security incidents by identifying, reporting, and resolving violations; developing secure isolation solutions; and ensuring systems recover securely with full functionality to minimize operational impact

Develop and review critical documentation including requirements proposals, CONOPS, ECPs, systems engineering plans, architectural design papers, and risk analyses to support secure system implementation and authorization

Deliver expert security recommendations to U.S. Navy representatives based on technical analysis, compliance requirements, and emerging threats to enhance the security posture of naval systems

Support the ISSM and facility director in implementing and managing comprehensive cybersecurity policies that align with Navy and DoD requirements while addressing system-specific security needs

Create and maintain documentation for system security operations, maintenance procedures, and problem resolution to ensure consistent security practices and facilitate knowledge transfer

Qualification

Risk Management FrameworkCompTIA Security +Cybersecurity ComplianceCISSPInformation Security ManagementCommunicationCollaboration SkillsWork Ethic

Required

5 years relevant experience with Bachelors in related field; 3 years relevant experience with Masters in related field; 0 years experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 9 years relevant experience

This position is an IAM Level II in Cyber Security Workforce

Bachelor Degree from accredited University

CompTIA Security + (CE)

A current USG issued “SECRET” security clearance

Strong understanding and experience with the Risk Management Framework, JSIG, RMF Bodies of Evidence

Excellent oral and written communication skills, collaboration skills, and experience in presenting cybersecurity issues to all levels of management, as well as non-technical staff

Strong work ethic, demonstrated self-starter with the ability to work in a fast paced, team-oriented environment

Preferred

CNSSI 4012 certificate or ADQ GA7

Successful completion of at least one of the following military training courses: NEC 2779 (CIN: A-531-0009) or 3372 or CIN W-3B-1500 (EKMS Manager) or A-4C-1340 (KMI) (or DOD Service equivalent)

A GSLC or CISSP or CISM or CAP or or CASP is Strongly preferred