Information Systems Security Engineer (ISSE)

TRISTAR is seeking a Information Systems Security Engineer (ISSE) for our upcoming government customer in MacDill AFB, FL

• TheInformation Systems Security Engineer (ISSE) will support PEO SDA, USSOCOM Components, TSOCs, and others to include Foreign Military Sales (FMS) as mission dictates, by providing technical and analytical mission planning, execution, and post-mission system support
• Mission planning is critical to special operations, the mission planning, execution, post-mission system/device will be maintained in a serviceable status to support combat/contingency operations
• The overall goal will be to achieve a system/device availability of 95% and a maintenance turnaround time of less than 24 hours from the time of notification within Continental United States (CONUS) and manned Outside the Continental United States (OCONUS) locations
• Support will be characterized by two (2) levels: Level I (Critical/Urgent) support will be defined as critical or emergency support to the mission planning and execution system/device
• This level of support will be completed within 72 hours or as mission requirements dictate
• Level II (Routine) support will be defined as cyclical support to the mission planning and execution system/device
• This level of support will be completed within 30 days or as mission requirements dictate

Position Responsibilities

• The ISSE is any individual, group, or organization responsible for conducting information system security engineering activities
• Reference NIST SP 800-37, Applying the Risk Management Framework to Federal Information Systems, for additional details Information system security engineers are an integral part of the development team (e.g., integrated project team) designing and developing organizational information systems or upgrading legacy systems
• Employ best practices when implementing security controls within an information system including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques
• Knowledge of cybersecurity policy, procedures, and workforce structure to design, develop and implement a secure enclave environment
• Documented experience contributing to the Assessment and Authorization (A&A) of information systems under National Institute of Standards and Technology (NIST) compliant Risk Management Framework (RMF)
• Coordinate security-related activities with information security architects, senior information security officers, information system owners, common control providers, and information system security officers
• Document changes to systems and checklists
• Assist with developing and maintaining system policies and procedures for network security, virus protection, user accounts, maintenance, and utilization
• Engineer and implement security solutions
• Provide remediation of vulnerabilities identified on infrastructure devices
• Analyze information assurance-related technical problems and provide engineering support in solving these problems
• Ensure compliance with DoD guidance, regulations, and instructions as they pertaining to the unit's systems/networks
• Notify the government when changes to DoD guidance, regulations, and instructions impact the unit's systems/networks
• Perform vulnerability and risk analyses of computer systems and applications during all phases of the system development life cycle

• 5 years performing security engineering and architecture
• MUST be a US Citizen
• An ACTIVE Top Secret Clearance with SCI Eligibility is required

Education and/or Certification

• Bachelors' Degree in Computer Science or related field, OR equivalent experience/combined education with 5+ years of professional experience
• Note: 5 additional years security engineering and architecture experience can be used instead of Bachelors' Degree in Computer Science
• DoD 8570 IASAE Level III certification (Government will allow a 3-6 month waiver to obtain the required concentration of either ISSAE or ISSAP )

About TRISTAR

TRISTAR is a professional services company supporting U.S. Department of Defense programs. Our core competencies include Electronic Warfare, Enterprise Management, Full Spectrum Cybersecurity, Information Technology, Digital Transformation, Software Engineering and Development, Maritime Modernization and Engineering, and Technical Solutions. Founded in March 1995, TRISTAR has built an employee-focused collaborative environment enabling our team of professionals to create and deliver customized solutions to meet mission critical challenges.

TRISTAR provides Equal Employment Opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.