Information Systems Security Engineer
Independent Software
- Columbia, MD
- Permanent
- Full-time
- Reviewing security architectures, firewall configurations, IDS/IPS, and security controls for new and proposed systems.
- Prevention and early detection and resolution of risks to high value assets.
- Development and management of strategic and tactical physical, personnel and procedural security programs.
- Architect, design, implement, support, and evaluate security-focused tools and services including project leadership roles.
- Providing software vulnerability remediation advice to software developers and software development teams.
- Implementing security vulnerability testing tools to provide continuous monitoring and patch verification.
- Test and evaluate products in a lab environment.
- Reviews certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content.
- Knowledge of 8570 controls, testing information systems for compliance of the controls, and the creation of test cases.
- Knowledge of incident response and the creation, execution, and reporting of such activities.
- Knowledge of Firewalls, IDS/IPS, intrusion detection, VLANS, routing and other network security technologies.
- Knowledge of virtualization technologies including virtual firewalls, networking and segmentation.
- Knowledge of networking and firewall configuration and monitoring.
- Knowledge of SIEM technologies such as Splunk and creation of security event related dashboards.
- Knowledge of Malware identification, containment, and eradication.
- Knowledge of access control systems, PKI, multi-factor authentication, and entitlements management.
- Proficient in Microsoft Windows and Linux operating systems.
- Provide input into the development of security policies and procedures.
- Provide detailed security recommendations for the secure development and maintenance of systems.
- Evaluate and recommend new and emerging security products and technologies.
- Participate in projects that develop new intellectual property.
- Excellent written and verbal communication skills.
- Excellent leadership skills and teamwork skills.
- Results oriented, high energy, self-motivated.
- May be required to respond to after-hours requests as required in a 24 x 7 environment.
- DoD 8570 compliance with IASAE Level 3 is required.
- Fourteen (14) years’ experience as an ISSE on programs and contracts of similar scope, type, and complexity within the Federal Government is required.
- Bachelor’s degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required.
- Four (4) years of additional ISSE experience may be substituted for a bachelor’s degree