Senior Information System Security Engineer (ISSE)

Job DescriptionJob Description

Graham Technologies is seeking a Senior Information System Security Engineer (ISSE) who is responsible for architecting, engineering, and integrating cybersecurity solutions into complex information systems and network environments across on-premises and cloud platforms. Operating within the Risk Management Framework (RMF), the ISSE ensures that security principles are incorporated from initial design through system sustainment, supporting our customer mission objectives and Executive Order 14028 compliance. This role also integrates advanced security into CI/CD pipelines and supports evolving technology landscapes, including cloud- architectures and artificial intelligence systems.

Location: Vienna, Virginia

Key Responsibilities:

• Security Architecture & Engineering
  • Identify protection needs and define cybersecurity requirements for information systems and networks
  • Design, develop, and implement secure architectures across classified and cloud-based environments (e.g., AWS, Azure).
  • Implement cybersecurity countermeasures and integrate Cross Domain Solutions (CDS).
  • Develop interface specifications and ensure secure system integration.
  • Incorporate FBI-directed cybersecurity solutions and Executive Order 14028 requirements into design and implementation.
  • Engineer secure solutions into CI/CD pipelines supporting DevSecOps practices.
• Risk Management & Compliance
  • Operate within RMF lifecycle (Steps 1-6), ensuring continuous monitoring and compliance.
  • Conduct system security design reviews, architecture assessments, and risk analysis.
  • Configure and execute vulnerability scans (e.g., Nessus), analyze findings, and contribute to POA&M development.
  • Apply NIST, DoD, and ISO standards to cloud and hybrid environments, including AI/ML integrations.
• Implementation & Support
  • Translate cybersecurity policies into actionable system engineering solutions.
  • Support secure SDLC practices and implement security gates in CI/CD pipelines.
  • Recommend network component changes based on threat intelligence and vulnerability mitigation.
  • Participate in security incident response and forensic support efforts.
  • Provide engineering-level support for system sustainment, accreditation, and documentation activities.

Required Skills:

• Must possess active DoD Top Secret/SCI CI Poly
• Minimum 5 years of experience in information security engineering, preferably in federal or mission-critical environments.
• Experience securing cloud- platforms and integrating security into CI/CD workflows.
• Demonstrated experience designing and implementing secure system and network architectures.
• Strong expertise in the following areas:
  • Security Frameworks: NIST 800-53, ISO 27001, CIS Controls, DoD standards.
  • Cloud Security: Architecture and controls in AWS, Azure, or similar.
  • CI/CD Integration: DevSecOps principles, security toolchain integration.
  • Security Tools: Nessus, SIEM platforms, vulnerability and compliance scanners.
  • Software Security: Secure SDLC methodologies, code reviews, static/dynamic analysis.
  • Systems Engineering: Lifecycle management, requirements engineering, and integration.
  • Threat Modeling: Risk assessments, countermeasure design, and zero-trust architecture.

Desired Skills:

• Relevant certifications such as CISSP, CISA, CISM, GIAC, AWS Certified Security - Specialty, or Certified Cloud Security Professional (CCSP).

Compensation:

At Graham Technologies, we believe in treating everyone with fairness and respect. Our compensation package is designed to ensure fair pay for work, reflecting our commitment to integrity.

Many IT companies offer similar services, but what truly sets us apart is our people! We care deeply about our employees and consistently show our appreciation-not just for the final outcomes, but also for the effort and dedication shown every step of the way. Additionally, our generous benefits package supports our team members in living fulfilling and prosperous lives.

Here are just a few highlights of what we offer:

• Four Weeks of Accrued PTO in the First Year
• Eleven Paid Federal Holidays
• Comprehensive Health, Dental, Vision, and Life Insurance
• 401(k) Plan with Annual Employer Contributions
• Flexible Schedules
• Reimbursements for Continued Education and Training

Why Graham Technologies?

Our core values define who we are:

• Value our Customers
• Care about our Employees
• Passionate about Innovation
• Believe in a Strong Work Ethic
• Rely on Teamwork
• Integrity Matters

Founded in 2007, GTech is a consulting services firm passionate about delivering tailored solutions that meet our clients' needs and maximize the value of their investments. We achieve this by providing top-notch professionals across the IT industry. Our team embodies integrity, commitment, and reliability, which are at the heart of everything we do.

We are also dedicated to fostering a culture of support for our employees-the lifeblood of our business. At Graham Technologies, we've built a family-oriented environment where team members are encouraged to maintain a healthy work-life balance, pursue their passions, and grow professionally through flexible schedules, continued education, and a strong sense of community.