ISSE / Cyber Security Systems Engineer with Security Clearance

ISSE / Cyber Security Systems Engineer
Chantilly, VA
TS/SCI with Poly

At Bcore, our strength comes from how we deliver impact to the mission. Whether it's architecting critical IT solutions, producing actionable intelligence, or developing cutting-edge technology, we succeed because of the expertise, collaboration, and agility of our teams. Our Mission Services division combines enterprise IT, cloud solutions, DevSecOps, systems engineering, software development, and operational support. Our goal is not to simply support efforts, but to ignite a technology revolution, bridging the growing technology gap between the Government and commercial space.

Do you want to join a team that is building tailored technical solutions to modernize our government's mission and our client's business? Do you have a desire to change how people work? Are you interested in helping to protect our nation's cyber interests? Join our growing team supporting customer missions as an ISSE / Cyber Security Systems Engineer in Chantilly, VA.

1. Provide support to design, develop, and maintain the client's systems compliance with ICD 503 requirements. This includes advising and assisting the client with:
1. Security and network accreditations.
2. Providing the client with a working understanding of the latest networking communications and protocols, server technologies, application technologies, and security vulnerabilities.
3. Organizing and maintaining awareness of both physical and logical placement of network nodes within a network.
4. Identifying software components that fulfill mission requirements.
5. Translating a network's technology requirements into usable solutions.
2. Prepare and maintain documentation for specified networks that provide a reference for users to understand the established restrictions associated with those specific networks.
3. Develop and maintain System Security Plans (SSP) to meet ongoing security requirements. Ensure approved SSPs are kept up to date as changes are made to the networks.
4. Implement security requirements and ensure compliance with the client's Information System Security Manager (ISSM) approved SSPs for all networks, including:
1. Establishing or utilizing existing access control mechanisms.
2. Defining and configuring the appropriate firewall settings.
3. Conducting intrusion detection and prevention.
4. Conducting vulnerability scanning.
5. Conducting anti-virus management.
6. Conducting the necessary incident response actions in accordance with client security policies.
5. Exercise robust network oversight that incorporates rigorous compliance, privacy, and data security standards to achieve the following objectives:
1. Secure network.
2. High network availability.
3. High functionality and usability.
4. High network performance.
5. Low infrastructure cost and risk.
6. Complete record of ongoing network changes to include activity logging and auditing.

1. Active TS/SCI with required polygraph.
2. Securing mission systems through the ICD 503 process for security risk management, certification, and accreditation.
3. Securing and monitoring Microsoft Windows desktop and server in a secure IT environment including one or more of Windows 7, Windows 10, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016.
4. Securing and monitoring Linux & Microsoft Windows desktops, servers, and other devices.
5. Securing and monitoring Macintosh devices.
6. Applying Risk Management Framework controls to systems with successful authorization of those systems.
7. Use of system authorization workflow tools including advising on how to navigate those tools and assisting projects with steps needed to complete authorization.
8. Xacta or Greenlight 360 compliance and risk assessment application tool.
9. Rapid7 scanning and vulnerability remediation.
10. NMAP scans.
11. Splunk Administration knowledge and skills.
12. Securing and monitoring enterprise-level Cisco network devices.
13. Securing and monitoring enterprise-level Cisco VOIP devices.
14. Securing and monitoring enterprise-level Cisco VTC devices.
15. Administering, securing, and monitoring enterprise-level Windows and Linux network infrastructures.

1. Certified Information Systems Security Professional (CISSP) Certification(s).
2. Certified Splunk Administrator.

What you can expect from us: BCore is proud to be an equal opportunity workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, sexual orientation, or any other characteristic protected by law.