ISSE

SHC Federal is targeting an ISSE who will expertly execute or critically evaluate intricate security analyses of digital landscapes to pinpoint areas of weakness, deviations from established cyber defense benchmarks and mandates, and propose impactful remediation strategies. This position is onsite at the Pentagon. This crucial role encompasses:

Qualifications:

• Active Top Secret-SCI security clearance
• Industry-recognized Security+ certification
• A minimum of 10 years of hands-on experience and a comprehensive understanding of FISMA and NIST Information Security Guidelines
• Over 10 years of experience demonstrating keen insight into all facets of systems engineering, including architecture and design
• Proven aptitude to discern security exposures across information system network architectures, encompassing Operating Systems, hardware, and diverse data exchange protocols

Desired Skills:

• Familiarity with the eMASS platform
• Proficiency in utilizing Xacta
• Competence in executing SCAP scans on Windows and RHEL servers
• Knowledge of the procedures for acquiring licenses for all HBSS ePO and Tenable Security Center instances
• Thorough comprehension of Information Security tenets and Risk Assessment methodologies
• Ability to bolster the Risk Management Framework (RMF) lifecycle using relevant tools

Responsibilities:

• Serve as a strategic security engineering representative within collaborative engineering teams responsible for the conception, creation, deployment, appraisal, and/or integration of IA architectures, systems, or system components. (15%)
• Formulate and implement robust security blueprints for new or existing network systems, ensuring that hardware, operating systems, and software applications effectively address cybersecurity imperatives for the IS and Network Environment. (14%)
• Articulate IS and Network Environment security mandates in strict accordance with applicable cybersecurity regulations. (14%)
• Deliver authoritative guidance on Risk Management Framework (RMF), NIST SP 800-53, Security Technical Implementation Guides (STIGs), and Security Content Automation Protocol (SCAP) Compliance Checker within Information Systems (IS) and Network Environment. (12%)
• Document the various security control implementations meticulously, and compile the supporting artifacts for the Risk Management Framework (RMF) and ICD 503 Security Accreditation. (10%)
• Devise innovative approaches to alleviate IS and Network Environment vulnerabilities and recommend strategic modifications to network or network system components as necessary. (10%)
• Integrate IA principles into systems deployed to operational environments, rigorously validating and verifying system security requirements and establishing secure system designs for Stand-alone systems. Support security planning, assessment, risk analysis, and risk management efforts. (5%)
• Drive Continuous Monitoring – Plan of Action & Milestones (POAMs) – Collaborating with Network engineers, Multimedia engineers, System engineers, and System Admins to resolve formal security findings from assessments and scans, and diligently maintain the POAM. (5%)
• Take ownership of building, deploying, and patching HBSS Windows and ACAS RedHat Linux 7.9 and 8 servers. Conduct incisive technical security assessments of computing environments to identify vulnerabilities, and build, maintain, and patch all ePO, Security Center, and Nessus applications. (5%)
• Spearhead and/or contribute to the holistic security planning, assessment, risk analysis, risk management, certification, and awareness activities for diverse system and networking operations. (5%)
• Provide expert Tier 3 troubleshooting for Cyber Security Tools such as ACAS and HBSS/ESS. (5%)