NAVFAC Information System Security Engineer (ISSE)

In by admin

Norfolk, VA, Washington, D.C.
Posted 2 weeks ago

Perform role as an Enterprise Wide Information System Security Engineer (ISSE) in support of the Enterprise Wide Information System Security Manager (ISSM). Information Assurance Development Engineer (or equivalent) seems to be the appropriate LCAT at Senior Skill level. This position requires significant experience in Risk Management Framework (RMF), system engineering experience and expertise on configuration, maintenance, management, and cyber security compliance associated with the all FRCS, IT, and other networking components.

Other tasks include:

  • Apply Security Technical Implementation Guides (STIGs), perform period scans for system vulnerabilities with cybersecurity tools such as Information Assurance Vulnerability Alerts (IAVAs)/ Vulnerability Remediation Asset Manager (VRAM), and remediate security findings under the guidance and supervision of Government leads.
  • Develop and update technical artifacts (HW/SW, network diagrams, and other various documents) to ensure they are accurate.

Required skillset aligns with CLIN 0003/Task 3 requirements identified in the PWS. Requirement to also work with the Facility Engineering Commands (FECs) on their engineering shortfalls and RMF Step 3 activities.

Job Features

Job CategoryEngineer, Security
LocationNorfolk, VA; Washington, D.C.
ClearanceTop Secret
CertificationCISSP, CISM, GSLC, or equivalent certification
Experience5-10 years experience in a Cybersecurity related position. Requires experience in the following areas: -Risk Management Framework (RMF) -System Engineering -Implementation of Security Technical Implementation Guides (STIGs)
ResponsibilitiesPerform role as an Enterprise Wide Information System Security Engineer (ISSE) in support of the Enterprise Wide Information System Security Manager (ISSM). Information Assurance Development Engineer (or equivalent) seems to be the appropriate LCAT at Senior Skill level. This position requires significant experience in Risk Management Framework (RMF), system engineering experience and expertise on configuration, maintenance, management, and cyber security compliance associated with the all FRCS, IT, and other networking components. Other tasks include: * Apply Security Technical Implementation Guides (STIGs), perform period scans for system vulnerabilities with cybersecurity tools such as Information Assurance Vulnerability Alerts (IAVAs)/ Vulnerability Remediation Asset Manager (VRAM), and remediate security findings under the guidance and supervision of Government leads. *Develop and update technical artifacts (HW/SW, network diagrams, and other various documents) to ensure they are accurate. Required skillset aligns with CLIN 0003/Task 3 requirements identified in the PWS. Requirement to also work with the Facility Engineering Commands (FECs) on their engineering shortfalls and RMF Step 3 activities.
Knowledge & SkillsStrong written and oral communication skills

Apply Online

Contact Information

A valid phone number is required.
A valid email address is required.