Available Positions
Information Systems Security Engineer
Location: Tampa, FL
Positions: Multiple Positions
Job Type: Contract or Contract to Hire or Direct Hire
Responsibilities:
ISSE shall:
  • The ISSE is any individual, group, or organization responsible for conducting information system security engineering activities. Reference NIST SP 800-37, Applying the Risk Management Framework to Federal Information Systems, for additional details Information system security engineers are an integral part of the development team (e.g., integrated project team) designing and developing organizational information systems or upgrading legacy systems.
  • Information system security engineers employ best practices when implementing security controls within an information system including software engineering methodologies,system/security engineering principles, secure design, secure architecture, and secure coding techniques.
  • System security engineers coordinate their security-related activities with information security architects, senior information security officers, information system owners, common control providers, and information system security officers.
  • Document changes to systems and checklists.
  • Assist with developing and maintaining system policies and procedures for network security, virus protection, user accounts, maintenance and utilization.
  • Engineer and implement security solutions.
  • Provide remediation of vulnerabilities identified on infrastructure devices.
  • Analyze information assurance-related technical problems and provide engineering support in solving these problems.
  • Ensure compliance with DoD guidance, regulations, and instructions as they pertaining to the unit's systems/networks.
  • Properly notify the government when changes to DoD guidance, regulations, and instructions impact the unit's systems/networks.
  • Perform vulnerability and risk analyses of computer systems and applications during all phases of the system development life cycle.
  • Provide technical support to the IA Cell to develop and maintain JCSE IA processes and procedures regarding JCSE's computer network defense in-depth protection for the JCSE enterprise.
  • Support to development of RMF Security Plans.
  • Assist with developing and maintaining system policies and procedures for network security, virus protection, user accounts, maintenance and utilization.
  • Coordinate with internal JCSE and external organizations, agencies and activities to support resolution of security issues, accreditation and connection approval and waiver requests.
  • Recommend connection approval, disapproval or modification based on security risks and system vulnerabilities.
  • Recommend network configuration, policy, training, operational or other changes/updates based on assessed risks.
  • Develop and review Security Test and Evaluation plans as required.
  • Perform network security planning and engineering to include review of network topology and architecture plans, review of security device configuration changes, and review the risks associated with new technologies or products proposed for integration into the JCSE Enterprise network.
  • Contractor shall evaluate and asses vulnerabilities of network and application server hardware, operating system software, and peripheral network equipment such as routers, bridges, switches, attached cabling system, network interface cards, modems, multiplexers, and concentrators to identify associated vulnerabilities, risks and protection needs.
  • Contractor shall evaluate the effectiveness of network firewalls, and other security devices operating on the JCSE Enterprise.
  • Contractor shall assist in developing, documenting, and implementing security solutions to correct deficiencies that cannot be fixed with existing solutions.
  • Contractor shall conduct research of vulnerabilities discovered in operating systems, application software, infrastructure, and network security devices.
  • Analyze network usage, hardware & software capabilities, ineffective practices or  procedures, equipment capability and performance limitations, and other relevant factors to ensure effective security posture including providing recommendations for methods, procedures, coordinates corrective action to optimize utilization of present equipment.
  • Contractor shall implement and integrate IA defense postures to JCSE's Enterprise systems and architectures when coordinated or immediately upon being directed to secure reported cyber threats from the appropriate level of authority.
  • Advise and support JCSE leadership with regards to technical recommendations in IA design, transition, operation, configuration management, continual service improvement, enterprise architecture, and assistance with IA policy and planning for the enterprise  architecture, TA requirements, objectives and policies, and IA workforce.

CERTIFICATIONS
  • DoD 8570 IASAE Level III certification (Government will allow a 3-6 month waiver to obtain the required concentration of either ISSAE or ISSAP )

EDUCATION
  • Bachelors’ Degree in Computer Science or related field OR
  • Masters’ Degree in Computer Science or relevant field

EXPERIENCE
  • 5 years performing security engineering are architecture with Bachelors’ Degree OR
  • 10 years security engineering and architecture experience

SKILLS
Knowledge of cybersecurity policy, procedures, and workforce structure to design, develop and implement a secure enclave environment. Documented experience contributing to the A&A of information systems under National Institute of Standards and Technology (NIST) compliant Risk Management Framework (RMF).

CLEARANCE
TOP SECRET


V3Main offers excellent careers opportunities for professionals who possess outstanding interpersonal skills and are results-oriented team players.  If you are interested to join our team,  please submit your resume and cover letter on the Apply page or email it to careers@v3main.com.