Information Systems Security Engineer (ISSE)
Work Location: Reston, VA; work may also be performed at locations in the Washington, DC National Capital Region (NCR) (i.e., The District of Columbia; Arlington, Fairfax, Loudon, Prince William, and Stafford counties in VA (including incorporated cities) and Prince George and Montgomery Counties in Maryland and at additional CONUS Government locations to meet support of combatant commanders, as needed.
Cape Fox is seeking a highly qualified Information Systems Security Engineer (ISSE) to join our team in support of a government customer. The ISSE is responsible for conducting information system security engineering activities on behalf of the Information System Owner (ISO)/customer. The ISSE is an integral part of the development team designing and developing organizational information systems or upgrading legacy systems. The ISSE employs best practices when implementing security requirements within an information system including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques.
The DIA SCS has a requirement for A&AS support to provide independent and objective services for the implementation and sustainment of SCS sensor system information security compliance, and Tasking, Collection, Processing, Exploitation, and Dissemination (TCPED) systems information security compliance. SCS has a requirement to support independent reviews, analyses and inputs for complex technical SDA TCPED systems, current and future IT initiatives, information security best practices, and advancements in accordance with the DIA Risk Management Framework (RMF).
Core Duties:
- Ensure Office of Space and Counterspace (SCS) information systems are designed, developed, and implemented with required security features and safeguards in order to meet or exceed all DoD/NIST RMF+ requirements
- Required to employ best practices when implementing security controls within an information system including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques
- Coordinates security-related activities with the Information Systems Security Officer (ISSO) and the Information System Security Manger (ISSM)
- Provide daily information support and has detailed knowledge and expertise required to manage the security aspects of SCS information systems
- Responsible for the day-to-day security operations of SCS systems
- Maintain routine interface with the ISSO for security compliance
- Responsible for conducting information system security engineering activities. Information system security engineering is a process that captures and refines information security requirements and ensures that the requirements are effectively integrated into information systems through purposeful security architecting, design, development, and configuration