Coalfire Federal

Information System Security Engineer (ISSE) - Hybrid

Coalfire Federal · District of Columbia, United States

Computer and Network Security · 51-200 employees

8 h ago
Senior (5-10 yrs) Full-time United States
Log in to apply, save this posting, or score it against your profile with AI.

About the role

The ISSE provides security oversight for system deployments, configuration, and monitoring while implementing security controls to safeguard information systems. They are responsible for conducting risk analyses, updating FISMA system documentation, and validating architectures based on security engineering principles.

What they look for

Security Oversight Security Impact Assessments Security Testing Security Control Implementation Risk Analysis NIST Risk Management Framework Cloud Security System Development Life Cycle Security Baseline Creation Information System Security Engineering

Requirements

Candidates must have at least 5 years of professional ISSE experience and a Bachelor's degree in an IT-related field. Required certifications include one of CISM, CISA, GSLC, or Security+, with a strong understanding of NIST RMF and cloud solutions.

Benefits

Paid Parental Leave Flexible Time Off Certification And Training Reimbursement Digital Mental Health And Wellbeing Support Memberships Comprehensive Insurance Options

Full description

About Coalfire

Coalfire Federal is a market leading cybersecurity consultancy firm that provides independent and tailored advice, assessments, technical testing and a full suite of cyber engineering services to Federal agency customers. Coalfire Federal along with its parent company, Coalfire, has an unparalleled client list with deep customer relationships with leading cloud and technology providers including Amazon, Microsoft, IBM, Google and Oracle and Federal agencies. Coalfire has been a cybersecurity thought leader for over 20 years and has offices throughout the United States and Europe and is committed to making the world a safer place by solving our clients’ toughest security challenges.

But that’s not who we are – that’s just what we do.

We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.

We’re currently seeking a Mid-level Information System Security Engineer (ISSE) to support our team on site in Washington, D.C. Open to local candidates currently in the DMV (Washington, D.C. / Northern VA / Maryland) areas.

Position Summary

The mid-level Information System Security Engineer will provide services related to the enhancement, expansion, or consolidation of cybersecurity information assurance support. Support may include activities such as the systematic transfer of cybersecurity monitoring or incident response workloads to designated operations centers, or (in the case of newly identified threats or vulnerabilities) providing initial support to address and mitigate the impact of such threats.

Location Details

Hybrid - 3 days on government client site in D.C.

What you'll do

  • Responsibilities include security oversight of system deployments, system and component configuration, monitoring and reporting.
  • Support in performing security impact assessments, security testing, and working with operations and development teams on remediation and mitigation of findings.
  • Provide support to planning, designing and implementing security controls which safeguard and monitor events for information systems, enterprise applications and data.
  • Provide information system security engineering support to verify and validate proposed architectures and implementations based on sound security engineering principles and practices.
  • Identify security requirements and provide input to the system design to ensure the proper controls are built-in;
  • Participate in planning and executing in the system development life cycle of new system cycles;
  • Conduct risk analysis and update the risk assessment report for all changes to the FISMA systems; and provide a security impact analysis to include but not limited to the change to the overall system risk rating and posture and documentation that is impacted requiring updates.

What you'll bring

  • Experience performing IT product security specification reviews
  • Have prior experience in creating Security baselines for Information systems and must perform a Security Impact analysis for all exceptions or deviations.
  • Understanding of the NIST Risk Management Framework and associated special publications (800-37, 800-53, etc)
  • Understanding of cloud solutions e.g. IaaS, PaaS, and SaaS
  • Cloud related experience and or certifications
  • Communication, written, verbal
  • JCAM experience preferred

Education

Completed Bachelor’s degree from an accredited university, preferably in an IT related field.

Clearance / Suitability

Ability to obtain a clearance or a Public Trust is preferred, however all clearance levels and non-cleared applicants will also be considered.

Certifications One or more of the following must be active and verifiable: CISM, CISA, GSLC, or Security +

Years of Experience

At minimum 5 years of professional ISSE experience or similar roles in the cybersecurity / IT space is required

Bonus Points

  • NIST Cybersecurity Framework experience
  • Cybersecurity work experience within the federal space
  • Familiarity with AI tools and governance
  • Experience with process improvement, documenting procedures and workflow
  • CISSP certification

Why you'll want to join us

Our people make Coalfire Federal great. We work together on interesting things and achieve exceptional results. We act as trusted advisors to our customers and are committed to client-focused innovation as well as innovation in the industries that we serve.

Coalfire offers our people the chance to grow professionally with colleagues they like and respect while tackling challenges that stretch their minds and expand their skill sets. Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more.

You’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support memberships, and comprehensive insurance options.

Coalfire is an EEO employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.