Information Systems Security Engineer (ISSE) {S}

This position is for an Information Systems SecurityEngineer, based out of either Aurora, CO or King of Prussia, PA. As an ISSE, you will work closely with our team of talented engineers to ensure cybersecurity best practices are implemented and maintained across our diverse portfolio of programs and operations.

Company Overview

At Stratagem, we are dedicated to developing cutting-edge software solutions that play a crucial role in supporting critical aspects of national security. Our expertise lies in tackling exceptionally intricate challenges with a team of passionate, remarkably skilled engineers, all committed to delivering capabilities that make a lasting impact.

Stratagem is a small, high-end software technology company that delivers operational solutions and fulfills advanced research and development objectives for the Department of Defense and Intelligence Community. Our culture is deeply rooted in innovation, creativity, empowerment, fun, and a sense of family. Our focus is to support both your personal and professional growth by encouraging you learn new skills and expand your abilities. Our goal is to make Stratagem the last company you work for!
 
Stratagem is hiring exceptional individuals to join our growing team. We are actively pursuing thoughtful, team-oriented candidates with excellent problem-solving skills, a high level of creativity, and the ability to quickly adapt to new technologies. We are seeking clear communicators that can support their teammates with a sense of positivity and open-mindedness.

Stratagem is an operating subsidiary of the ARKA Group, L.P., a Blackstone Group portfolio company focused in the National Security Space sector.

Salary Information  

The annual base salary range for this position is $120,000-$180,000. Please note that the salary range is a general guideline and can be impacted by a wide range of factors. These may include but are not limited to: The candidate’s work experience, level of education, prior training, certifications, and applicable skillsets. Job offers are extended based upon a comprehensive evaluation of the aforementioned factors, as well as current market and business conditions.

Responsibilities & Skills

Our ideal candidate has proven successes in various aspects of cybersecurity including the RMF lifecycle and ability to collaborate well with multiple organizations to obtain and maintain ATO.

Who you are:

• You can advise on a range of security aspects
• You collaborate and add value through participation in peer code reviews, providing comments and suggestions

Requiredskills:

• Ability to obtain a Secret clearance to support our customers
• Active IAT Level II certification (i.e., Security+ or equivalent)
• Deep understanding of the Risk Management Framework (RMF) Lifecycle
• Effective communicator, able to brief large groups on complicated subject matter
• Ability to effectively complete tasks under pressure
• Familiarity with general security operations for cloud platforms (i.e., AWS, Azure)
• Ability to provide oversight and accountability of day-to-day cybersecurity operations
• Ability to generate and enforce cybersecurity policy as necessary to assist in meeting mission objectives and needs
• Ability to evaluate policies against applicable standards to maintain regular compliance.
• Ability to collaborate with cybersecurity entities (SCA, DAO, DAO-R) to effectively gain and maintain authority to operate (ATO) status for systems
• Ability to interpret information provided by software development teams and make sound decisions regarding implementation of new technologies
• Ability to review change requests for security impact and respond accordingly
• Ability to manage and understand control inheritance, applicable control overlays, and other common cybersecurity criteria
• Able to continuously monitor systems for various cybersecurity compliance elements and report status to stakeholders and team members accordingly
• Ability to conduct cybersecurity inspections, tests, and reviews in accordance with organizational and customer requirements
• Ability to coordinate with cybersecurity entities to generate plans of action and milestones (POA&M) for vulnerabilities and/or deficiencies discovered during risk assessment, audit, system accreditation, or inspections
• Able to provide insight and/or suggestions for information system contingency and disaster recovery
• Ability to make sound recommendations for patching systems based on vulnerability analysis activities, as well as track patch effectiveness
• Familiarity with NIST 800-53 and NIST 800-171 cybersecurity control sets
• Ability to work effectively solo or as part of a team

Desired skills (bonus points):

• Active Secret clearance
• Basic understanding of the software development lifecycle
• Experience working with governance risk and compliance tools (i.e. Xacta, SNOW, etc.)
• Experience utilizing common industry tools (i.e. Nessus, Splunk, Anchore, etc.)

All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, age, marital status, pregnancy, genetic information, or other legally protected status.

Employment with Stratagem is contingent upon satisfactory completion of several pre-employment requirements to include a credit check, background check, and drug screen.