Information Systems Security Engineer I

The Information Systems Security Engineer I (ISSE I) will support an active Naval Surface Warfare Center Philadelphia Division (NSWCPD) contract in Philadelphia, PA.

The ISSE I shall research, compile and document reviews, drawings, schematics, and reports, interviews with technical staff members, and the study of published material for use in various logistics documents, technical manuals, test plans, and reports, training materials, installation guides, and other technical documentation.

• Develop system security/IA plans and controls under guidance in DIACAP, RMF, NIST 800-53, NIST 80-37, CNSS 1253, DCID 6/3, and NISCAP.
• Shepherd System Security Plans through inception and decommission utilizing the eMASS workflow and RMF process.
• Review audit events and data for information systems and coordinate events/incidences that may occur with stakeholders.
• Define certification Test & Evaluation requirements.
• Coordinate with program management and customers to mitigate risks and ensure compliance with DoD IA requirements.
• Develop written instructions, procedures, schematics, and other technical documentation; review, redline, or rewrite written instructions, procedures, schematics, and other technical documentation in support of In-Service information technology tools.
• Provide the status of assigned tasks via both prepared and ad hoc oral briefings to Project Manager.
• Decompose system specifications to determine security/IA requirements and work with systems engineers, developers, and other security personnel to develop management and operational procedures, when required, to meet those requirements.
• Assist the ISSMs in meeting their duties and responsibilities of their respective systems.
• Perform control correlation identifier (CCI) assessments of applicable security controls.
• Support the DoDEA ISCM program by assisting the ISO in completing ISCM responsibilities and participating in the configuration management process for their respective systems, ensuring completion and reporting annually.
• Provide an assessment and recommendation to the ISO and AO as to the need for reaccreditation as a result of a significant change to the system identified during continuous monitoring.
• If required to perform the duties of a Control Assessment Validator (referred to as “Validator” within eMASS), act as a trusted agent of the SCA and review the test results, artifacts, any entered vulnerabilities for non-compliant controls or CCIs, and status of each CCI of a security control.

$75,000 to $95,000 annually

• Proficiency in DISA STIG procedures to include ACAS, HBSS, SCAP, & network scanning.
• Required to have and maintain a current DoD IAM Certification.
• The ability to perform duties unsupervised.
• Experience and knowledge with direct FISMA compliance and requirements.
• Active Department of Defense SECRET clearance required.
• Pursuant to the Government Contract, you must be a U.S. Citizen.
• Maintain compliance with DoD 8570.01-M IATII requirements.
• Minimum Education: Bachelor of Science degree in Computer Science, engineering, information technology, or a related field.
• Minimum Experience: Five (2) years of experience in designing computer systems, integrating computer hardware, software, building computers, designing network systems.