Information Systems Security Engineer (ISSE)

Responsibilities

Noblis MSD’s mission is to support the Naval Sea Systems Command (NAVSEA) and, Naval Surface Warfare Center (NSWCPD) and their missions’ to enable research, development, test and evaluation, acquisition, engineering, systems integration, in-service and fleet engineering with cybersecurity, comprehensive logistics, and life-cycle savings.  We are looking to hire an ISSE to provide support to various ship programs for the US Navy. 

The Information Systems Security Engineering (ISSE) position supports the US Navy providing system security engineering services and/or product to ensure secure reliable and uninterrupted availability of customer developed and deployed systems and networks.  The ISSE will support the Government to ensure core security engineering principles are implemented into assigned programs information systems architecture.

PRINCIPAL DUTIES/RESPONSIBILITIES:

• Lifecycle cybersecurity support of US Navy systems, which includes, but is not limited to:
• Perform analysis and evaluation to design, implement, test and field secure systems, networks, and architectures
• Install and configure secure hardware and software systems and otherwise maintain the program’s technological infrastructure
• Conduct regular security audits and ensuring that systems are up-to-date with security patches
• Provide technical support to users and troubleshooting security or other related issues as they arise
• Manage user accounts and access to systems
• Perform data backups and disaster recovery procedures
• Assessing system compliance against NIST, DoD, and Navy security requirements to include the NIST 800-53 controls and DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs)
• Develop, implement, and enforce information systems security policies ensuring system security requirements are addressed during all phases of the acquisition and Information System (IS) lifecycle.
• Conduct certification and testing in accordance with the Risk Management Framework (RMF) and National Institute of Standards and Technology (NIST) policy; identify deficiencies and providing recommendations of risk mitigation to customer.
• Support the Government to resolve conflicting system security engineering requirements.
• Develop program technical publications such as Systems Engineering Plans (SEP), Technical Plans, Analyses and Reports, Risk Assessments, Security Concepts of Operations (SECONOP), Program Protection Plan, Anti-Tamper Plan, Cybersecurity Strategy, Technology Development Strategies, Test Plans, procedures and reports, System Security Plans
• Coordinating with other system SMEs to identify and develop authorization boundary diagrams, architecture diagrams, and hardware and software inventories
• Working with system administrators, engineers, and developers to update system/site policies, procedures, and process guides
• Producing evidence as necessary to support compliance status of NIST, DoD, and Navy security requirements
• Maintaining awareness and knowledge of evolving security and risk management standards and communicate and apply relevant changes to existing processes
• Attending and participating in regular A&A status meetings to facilitate progress and address potential issues of RMF system efforts
• Actively participating in working group meetings to identify, plan, and execute strategies in response to emerging cybersecurity/RMF policies

Based on client requirements there may be some opportunity for hybrid work, but candidates must be local to Philadelphia to come in as needed.  

Required Qualifications

• Bachelor's degree in Computer Information Systems, Systems Security Engineering, Computer Science and at least 3 years related experience; or a HS diploma and 9 years’ experience in lieu of a degree may be considered.
• Successful applicants must be US Citizens with either have an active government security clearance (DoD Secret) or the ability to receive a DoD Secret upon position acceptance.
• CompTIA Security+ (CISSP preferred).
• Ability to obtain OS certification or complete approved related training within 180 days of hire.
• Must have a valid US passport or the ability to obtain one upon position acceptance.

• Experience with a wide range of modern computing platforms and technologies.
• Experience with modern networks, operating systems, databases, and virtual computing.
• Experience with testing methods, automated tools, plans, and procedures for verification of compliance and vulnerability requirements.
• Experience with vulnerability assessment tools, including but not limited to Assured Compliance Assessment Solution (ACAS) and Host Based Security System (HBSS) and DISA SCAP/STIGs.
• An ability to develop and interpret security architectures, data flow diagrams, engineering electrical/pinout drawings, and publications that depict the system(s) architecture.
• Ability to be able to identify risk areas of non-compliance and propose solutions to design to full-fill operational requirements and meet cybersecurity requirements simultaneously.

Desired Qualifications

• Knowledge of the fundamental concepts, practices, and procedures associated with industrial control systems.
• Exceptional verbal and written communication skills, with the ability to collaborate across teams and organizations, including senior level management.
• Proven ability to multi-task and deliver on-time with the highest quality.

Overview

Noblis and our wholly owned subsidiaries, Noblis ESI, and Noblis MSD tackle the nation's toughest problems and apply advanced solutions to our clients' most critical missions. We bring the best of scientific thought, management, and engineering expertise together in an environment of independence and objectivity to deliver enduring impact on federal missions. Noblis works with a wide range of government clients in the defense, intelligence and federal civil sectors. Learn more at Noblis -About Us

Why work at a Noblis company?

Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public. Noblis has won numerous workplace awards. Noblis maintains a drug-free workplace.

*Remote/hybrid status is subject to change based on Noblis and/or government requirements

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to race, color, ethnicity, sex, age, national origin, religion, physical or mental disability, pregnancy/childbirth and related medical conditions, veteran or military status, or any other characteristics protected by applicable federal, state, or local law.

If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact us.

EEO is the Law  |  E-Verify  |  Right to Work

Total Rewards

At Noblis we recognize and reward your contributions, provide you with growth opportunities, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, and work-life programs. Our award programs acknowledge employees for exceptional performance and superior demonstration of our service standards. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in our benefit programs. Other offerings may be provided for employees not within this category. We encourage you to learn more about our total benefits by visiting the Benefits page on our Careers site.

Compensation at Noblis is determined by various factors, including but not limited to, the combination of education, certifications, knowledge, skills, competencies, and experience, internal and external equity, location, clearance level, as well as contract-specific affordability, organizational requirements and applicable employment laws. The projected compensation range for this position is based on full time status. For part time or on-call staff, compensation is proportionately adjusted based on hours worked. While monetary compensation is important, it's just one component of Noblis’ total compensation package.

Posted Salary Range