Position Title: Space ISSE Position Type: Onsite Location: Chantilly, VA Clearance: TS/SCI CI Poly
Description: Waypoint’s client is seeking a talented Information System Security Engineer (ISSE) to join their team. In this role, you will support advanced customer mission systems throughout the full system lifecycle. The ISSE will work closely with security stakeholders, including system engineers, program managers, security control assessors, and authorizing officials, to define system security requirements, develop and review system security designs, and ensure compliance with cybersecurity standards and frameworks. This position requires a strong understanding of the Risk Management Framework (RMF), NIST SP 800-53, and experience with cybersecurity solutions for mission-essential space systems.
Responsibilities:
Define system security requirements in coordination with security stakeholders.
Provide independent cybersecurity advice and guidance to government stakeholders.
Develop or review system security designs and architectures.
Support testing of systems during development and reaccreditation.
Provide evaluations to program stakeholders and advise on remediation methods.
Develop and/or review cybersecurity documentation in support of the RMF process, following NIST SP 800-37 Rev 5.
Coordinate RMF processing with program and developer staff.
Review and develop RMF Assessment and Authorization (A&A) documentation, such as System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POAMs).
Support engineering analysis of alternatives, tradeoffs, and risk treatment decisions.
Work with interdisciplinary teams to deliver trustworthy and secure systems.
Explain complex cybersecurity issues to a diverse audience in layman's terms.
Present verbal and written communications to senior leadership, including ISSMs, ISOs, and security directors.
Requirements:
Bachelor's Degree or equivalent experience.
Minimum of 5 years of system and/or security engineering experience, supporting U.S. Government customers under RMF (NIST 800-53) or Intelligence Community Directive (ICD) 503.
Experience with cybersecurity work for mission-essential space/ground system acquisitions and implementations.
(ISC)² Certified Information System Security Professional (CISSP) or Certified Cloud Security Professional (CCSP) certification, or the ability to obtain within six months of hire.
Proficiency with cybersecurity tools and technologies such as Nessus, WebInspect, Splunk, Open SCAP, Microsoft Windows Server Active Directory, RedHat Linux, virtualization platforms (Hyper-V, VMware), and Real-Time Operating Systems (RTOS) like QNX and VxWorks.
Experience securing cloud-hosted assets in AWS/Azure and network engineering/design of LANs, WANs, MANs.
Strong initiative and communication skills, with the ability to present complex information clearly.