Information Systems Security Engineer 3

We're searching for talented individuals who provide intelligence, engineering, and mission management expertise for the Government. This program will maximize the effectiveness and efficiency of our country's most important missions both at home and abroad. If you are ready to support a high-performing team that truly makes a difference, thencome join us!

Job Description:

Experience to manually review network diagrams, network device configurations, termination points for VPNs and working knowledge of software TLS security. Maintain flexible and non-traditional Risk Management Framework (RMF) review of unclassified/classified networks to assess and prescrible countermeasures for secure communications. Familiar with applying different security standards and frameworks. Ability to create security assessment reports, adhoc technical/administrative tasks, keen writing skills and leadership qualities. Strong crypto, network and cloud computing background.

The Information Systems Security Engineer (ISSE) shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies. Validates and verifies system security requirements definitions and analysis and establishes system security designs. Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements. Builds IA into systems deployed to operational environments. Assists architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions. Supports the building of security architectures. Enforce the design and implementation of trusted relations among external systems and architectures. Assesses and mitigates system security threats/risks throughout the program life cycle. Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. Reviews certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content. Applies system security engineering expertise in one or more of the following to : system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security testing.

The Level 3 Information Systems Security Engineer shall possess the following capabilities:

• Participate as a security engineering representative on engineering teams for the design, development, implementation and/or integration of secure networking, computing, and enclave environments
• Participate as a security engineering representative on engineering teams for the design, development, implementation and/or integration of IA architectures, systems, or system components
• Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave environments
• Apply knowledge of IA policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments
• Interact with the customer and other project team members
• Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of IA architectures, systems, or system components
• Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures
• Support security planning, assessment, risk analysis, and risk management
• Identify overall security requirements for the proper handling of Government data
• Provide security planning, assessment, risk analysis, and risk management
• Perform system or network designs that encompass multiple enclaves, to include those with differing data protection/classification requirements
• Recommend system-level solutions to resolve security requirements
• Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures
• Provide expert guidance and work product evaluation to one or more security engineers that support Engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave environments
• Advocate and recommend system-level solutions to resolve security requirements. Monitors and suggests improvement to IA policy
• Interact with customers, IT staff, and high-level corporate officers to define and achieve required IA objectives
• Provide the Government assistance to ensure that the architecture and design of information systems are functional and secure, including program of record systems and special purpose environments with platform IT interconnectivity

Qualifications:

• Twenty (20) years' experience as an ISSE on programs and contracts of similar scope, type, and complexity is required.
• Bachelor's degree in computer science, Information Assurance, Information
• A master's degree in computer science, Information Assurance, Information Security System Engineering, or related discipline may be substituted for two (2) years of experience, reducing the requirement to eighteen (18) years of experience.
• Four (4) years of additional ISSE experience may be substituted for a bachelor's degree
• Security System Engineering, or related discipline from an accredited college or university is required.

Certifications Required:

• DoD 8570 compliance with IASAE Level 3 is required Both Information Systems Security Engineering Professional (ISSEP) and CISSP Certifications are required.

Position requires active Security Clearance with appropriate Polygraph

Pay Range: 165,000-215,000

The RealmOne pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Our approach to crafting offers considers various factors to establish an equitable and competitive compensation package. These considerations include, but are not limited to, the extent and intricacy of the role's responsibilities, the candidate's educational background, their work experience, and the specific competencies crucial for success in the role.

RealmOne Benefits:

• Healthcare Coverage + Insurance: Medical: Three (3) rich healthcare options through CareFirst with 100% or majority company-paid premiums. Tax-advantaged health savings account available with generous employer contribution. Dental + Vision: 100% employer-paid for employees and family with buy-up option available.
• Retirement + Savings: 401K - 10% TOTAL CONTRIBUTION - 5% safe harbor (immediate vest) - 5% annual profit share (vesting req'd).
• Paid Time Off + More: 4 weeks starting PTO - 11 federal holidays + 2 floating holidays - Paid hours for company-required training.
• Career Growth + Development: Access to FREE 24/7 learning via Udemy - Opportunities to participate in tech councils, industry initiatives, etc. - $7,500 annual Educational & Professional Development Assistance.
• MORE BENEFITS...FOR EVERY LIFESTYLE! - Paid parental leave - Adoption assistance - Annual swag drops - Flexible work schedules - -Generous referral bonus program - Employee appreciation + family-friendly corporate events ...and much more.

ABOUT US

• RealmOne is a mid-sized science and technology company dedicated to solving our customers' toughest mission challenges.
• Headquartered in Columbia, MD., RealmOne supplies advanced cybersecurity, data science and software engineering services and products to customers in the Government and commercial sectors.
• RealmOne delivers encompassing mission assurance and critical systems support to government customers across various U.S. locations to include Colorado, Georgia, Hawaii, Texas, Utah, and Virginia.
• RealmOne has won numerous awards, to include Top Workplaces by the Baltimore Sun. Across more than 20 prime contracts, RealmOne is a premiere innovator for the Government and Department of Defense, and our team is located across the United States.

We're an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, national origin, veteran or disability status.