Homeoffice Information System Security Engineer bei MKS2 Technologies

Information System Security Engineer (ISSE) III

Position Type: Full-Time
Clearance Required: Favorably adjudicated Tier 3 by the Vetting Risk Operations Center (VROC)
Positions: 4
Letter of Intent: Required

Salary: $89,000-$115,000

Location: (Naval Surface Warfare Center Philadelphia Division)

📍 Overview

We are seeking four highly skilled Information System Security Engineers (ISSE) III to support cybersecurity operations and Risk Management Framework (RMF) compliance for Department of Defense (DoD) systems. This position requires deep technical expertise in securing IT systems, implementing security controls, and maintaining compliance with DoD cybersecurity standards.

🎓 Required Qualifications

• Minimum of seven (7) years of professional experience in:
• Capturing and refining information security operational and security requirements
• Implementing security controls and configuration changes
• Applying software/hardware updates and patches
• Conducting vulnerability scanning and securing configurations
• Bachelor’s degree in:
• Computer Science
• Information Technology
• Or an equivalent STEM field from an accredited college or university
• Must hold the following certifications:
• IAT-III
• CASP+ CE
• CCNP Security
• CISA
• CISSP (or Associate)
• GCED
• GCIH
• CCSP
• Clearance Requirement:

• Favorably adjudicated Tier 3 by VROC

🔧 Primary Responsibilities

• Develop, maintain, and track RMF documentation including:
• System Categorization Forms
• PIT Determination Checklists
• AO Determination Checklists
• Implementation Plans
• SLCM Strategies
• System Policies
• Hardware/Software Lists
• System Diagrams
• Privacy Impact Assessments (PIA)
• POA&Ms
• Execute RMF processes to support:
• Interim Authority to Test (IATT)
• Authorization to Operate (ATO)
• Denial of Authorization to Operate (DATO)
• Tailor IT and Cybersecurity control baselines per RMF guidelines
• Conduct Ports, Protocols, and Services Management (PPSM)
• Perform vulnerability-level risk assessments and control testing
• Mitigate vulnerabilities per STIG requirements
• Maintain POA&Ms in eMASS
• Develop system-level IT/CS policies and procedures
• Implement and assess STIGs and SRGs
• Conduct vulnerability assessments using:
• ACAS
• SCAP Compliance Checker (SCC)
• Evaluate STIG
• Deploy security updates and patches
• Perform audits of hardware/software components
• Maintain inventory of system components
• Participate in IT change control and configuration management
• Upload vulnerability data to VRAM
• Image/re-image RMF boundary assets
• Install and troubleshoot software for compliance
• Assist with SSD/HDD removal prior to asset destruction
• Apply cybersecurity patches per DoD/DoN TASKORDs and FRAGORDs
• Ensure STIG compliance for Windows servers and Cisco hardware
• Report network hardware compliance issues to management