Information System Security Engineer (ISSE) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Canvas · 1 week ago

Information System Security Engineer (ISSE)

positionEglin Air Force Base, FL
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
date10+ years exp

Canvas provides engineering services and technical solutions for customers in federal and commercial markets. The Information System Security Engineer (ISSE) will support the 96TW at Eglin AFB, FL, focusing on securing system design and implementation, conducting security assessments, and ensuring compliance with cybersecurity policies and standards.

3D TechnologyCADInformation TechnologyInterior Design
check
Growth OpportunitiesbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Secure System Design & Implementation
Conduct information system security engineering activities, translating security requirements into technical specifications and architectural designs
Integrate security controls into system architectures, ensuring security is embedded rather than bolted on as an afterthought
Collaborate with project teams during the initial design and construction of new sites to ensure physical cybersecurity considerations are integrated from the ground up, including access controls, surveillance systems, and environmental safeguards
Perform comprehensive analyses of current site security, encompassing both physical (e.g., perimeter security, access control) and logical (e.g., network segmentation, intrusion detection) aspects
Generate detailed reports outlining identified vulnerabilities and propose practical, cost-effective solutions to improve the overall security posture, addressing both immediate risks and long-term security needs
Evaluate proposed new systems and applications (including RF systems, SATCOMs, and range instrumentation) for security vulnerabilities and risks
Define the comprehensive set of cybersecurity requirements that must be incorporated into these systems from the earliest stages of development and implementation
Provide guidance to the implementation teams, ensuring that cybersecurity principles are correctly applied
Develop cybersecurity requirement verification and validation test plans, executing those plans, and reporting results to stakeholders
Conduct security assessments of existing systems and infrastructure undergoing modernization or upgrade
Develop and implement security plans to address identified vulnerabilities and ensure the ongoing security posture of the systems
Develop and maintain security architecture documentation, including security policies, standards, and procedures, to guide the implementation of secure systems and infrastructure
Provide expertise and guidance on secure coding practices, cryptography implementation, and security testing methodologies to development teams
Provide advice on the security impacts of proposed changes to systems, networks, and infrastructure
Participate in development activities to implement system modifications securely
Offer guidance on continuous monitoring approaches and tools, helping establish effective security measurement frameworks
Conduct comprehensive research to identify the most effective and appropriate security monitoring solutions for detecting and responding to security incidents
Provide expert advice on the selection, configuration, and integration of these tools into the organization's existing infrastructure, focusing on optimizing their performance and minimizing implementation risks
Develop technical solutions to address identified vulnerabilities and support security control implementation efforts
Evaluate new technologies for security implications and provide recommendations on adoption strategies that maintain security posture
Ensure all security-related activities comply with applicable government regulations, policies, and standards (e.g., NIST, DoD, CNSS, JSIG)
Create and maintain comprehensive documentation related to security engineering activities, including system security plans, security assessment reports, and configuration management documentation
Work collaboratively with other IT professionals, security specialists, and stakeholders to ensure the effective implementation and maintenance of security controls

Qualification

Cybersecurity requirementsSecurity architecture developmentSecurity assessment toolsCloud security principlesDoD cybersecurity policiesSecure coding practicesSecurity incident responseVulnerability remediationSecurity informationEvent managementAnalytical skillsCommunication skillsTeam collaboration

Required

Master's degree in Computer Science, Information Systems, Cybersecurity, or a related field
Minimum of 10 years of experience as an Information System Security Engineer or in a similar role
Deep understanding of DoD and Air Force cybersecurity policies, regulations, and standards including special access programs (SAP)
Must possess one of the following certifications and must be current/maintained: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH)
Must be able to obtain and maintain a Top Secret security clearance
Deep understanding of information security principles, mechanisms, and best practices
Extensive knowledge of security frameworks and standards (e.g., NIST 800-53, NIST Risk Management Framework (RMF), CNSS, JSIG)
Extensive experience with security assessment tools and techniques (e.g., vulnerability scanners, penetration testing)
Proficiency in designing and implementing security controls for various operating systems (Windows, Linux), networks, and applications
Strong understanding of network security concepts (e.g., firewalls, intrusion detection/prevention systems, VPNs)
Experience with cryptography, including encryption algorithms, key management, and digital signatures
Extensive experience with cloud security principles and practices (e.g., AWS, Azure, Google Cloud)
Experience with security incident response and handling
Experience with security information and event management (SIEM) systems
Experience analyzing security logs and identifying potential security threats
Strong communication and interpersonal skills, with the ability to effectively communicate technical information to both technical and non-technical audiences
Ability to work independently and as part of a team

Preferred

Experience working on a military range, with a demonstrated understanding of the unique cybersecurity challenges associated with such environments

Benefits

Competitive Wages
Medical, Rx, Dental & Vision Insurance
Generous company-funded Basic Life Insurance
Company-funded Short-Term & Long-Term Disability
11 Paid Federal Holidays
Generous Paid Time Off (PTO)
Dependent Care and Medical Flexible Spending Accounts
401(k) retirement plan with company match and 100% immediate vesting
Tuition Reimbursement for ongoing training, continuing education, or advanced degree programs
Robust Employee Assistance Program
Employee Referral Bonus Program
Corporate Sponsored Events & Community Outreach
Spot Awards for Exemplary Individual Performance
Discretionary performance-based bonuses
And many more!

Company

Canvas

twittertwittertwitter
company-logo
Canvas scans the areas using an iPad or iPhone and then turns them into 3D designs.
dateFounded in 2008
location
Boulder, Colorado, USA
people-size51-200 employees
web-link
https://canvas.io

Funding

Current Stage
Growth Stage
Total Funding
$10M
2025-01-29Series A· $10M

Leadership Team

leader-logo
Greg Barto
Head of Partnerships
linkedin
Company data provided by crunchbase