Position Title:Cybersecurity ISSE Position Type: Onsite Location: Chantilly, VA Clearance: TS/SCI CI Poly
Description:
We are seeking a Cybersecurity Information System Security Engineer (ISSE) to support our customer with ICS/SCADA systems in acquisitions, development, operations, and disposal. The ISSE will apply security engineering principles, concepts, methods, and practices to ensure the protection of mission-critical assets within ICS/SCADA systems. This role requires collaboration across organizational teams to secure the assessment, acquisition, integration, and operation of these systems. The ISSE will play a vital role in safeguarding industrial control systems, ensuring a safe, secure, and resilient operational environment against current and emerging cyber threats.
Responsibilities:
Define security requirements for ICS systems in collaboration with security stakeholders, including system engineers, program managers, security control assessors, and authorizing officials.
Provide independent cybersecurity advice and guidance for ICS/SCADA systems to government stakeholders.
Develop or review security designs and architectures for ICS/SCADA systems.
Advise ICS/SCADA engineers on the best methods to remediate vulnerability findings.
Support engineering analysis of alternatives, trade-offs, and risk treatment decisions.
Guide system providers and programs in developing cybersecurity documentation for the Risk Management Framework (RMF) process.
Collaborate with interdisciplinary teams to deliver secure systems.
Brief diverse audiences on complex ICS/SCADA and cybersecurity issues.
Implement and assess cybersecurity solutions using current security scanning tools.
Travel may be required to support program activities.
Requirements:
Minimum of 8 years of experience in system and/or security engineering, supporting U.S. Government customers subject to Intelligence Community Directive (ICD) 503.
B.S. or M.S. degree in a technical field
Professional cybersecurity certification (CISSP, CCSP, CASP+).
Experience implementing NIST SP 800-82 and NIST SP 800-53 guidelines.
Experience defining system security requirements with security stakeholders.
Experience developing and reviewing ICS/SCADA system security designs and architectures.
Ability to support engineering analysis of alternatives, trade-offs, and risk treatment decisions.
Experience developing cybersecurity documentation for the RMF process per NIST SP 800-37 Rev 2.
Desired:
Experience presenting communications to senior leadership, including ISSMs, ISOs, and security directors.
ICS/SCADA security certification such as Global Industrial Cyber Security Professional (GICSP).
Experience with systems engineering lifecycle processes.
Experience advising government ISSMs on ATO extensions and body of evidence reviews.
Experience guiding systems through the RMF approval process according to NIST-800-37.
Experience providing independent ICS/SCADA cybersecurity advice to government stakeholders.