Information Systems Security Engineer

Cole Engineering (CESI), A By Light Company is looking for a technically proficient Information Systems Security Engineer (ISSE) who will perform critical engineering tasks to develop and maintain the cybersecurity posture of Department of Defense (DoD) Information Systems. Candidates will work within a team to develop customized technical solutions to unique problems while maintaining program accreditations throughout the system’s lifecycle. Candidates will work on various architectures, classifications, and technologies so a desire to troubleshoot and perform research to identify the cause of issues and potential solutions is important.

• Develop creative technical and procedural solutions to effectively secure Information Systems without introducing significant operational overhead.
• Perform technical implementation of security functionality to comply with NIST SP 800-53A controls and ensure the protection of computer systems, networks, and information.
• Validate security components are operating efficiently and are providing the expected insight into the information system through continuous monitoring
• Maintain the security posture of the information system through applying periodic DISA STIG configuration and vulnerability patch updates
• Perform self-assessments of Information Systems using manual and automated compliance tools in support of obtaining or maintaining a DoD RMF ATO.
• Propose justification and mitigating countermeasures to reduce or eliminate risk level of an identified vulnerability.

• A Bachelor’s degree and at least two years of professional experience in a cybersecurity role
• A strong understanding of enterprise security principles and best practices
• A strong technical background performing system administration on at least one of the following infrastructure components:
  • Networking (Cisco ASA, Cisco NS-OX)
  • Virtualization (RHV, VMware, Hyper-V)
  • Linux (RHEL, Kali)
  • Windows (SHB, HBSS)
• A self-motivated desire for learning new technologies and an interest in professional growth

• An active Information Security related certification (Security+, CCNA Security, CEH)
• Technical experience implementing and maintaining enterprise management tools
• Technical experience with virtualization solutions (VMware, Hyper-V, RedHat Virtualization)
• A strong understanding of at least one major scripting language (BASH, PowerShell, Python)
• Experience with source-code analysis tools and with software development lifecycle approaches.

• SECRET Security Clearance