Senior Information Systems Security Engineer; ISSE

Senior Information Systems Security Engineer (ISSE)

Location: Clarksburg, WV - Hybrid
Clearance: Top Secret (TS)

Job Title: Senior Information Security Specialist

Position Summary: As a Senior Information Security Specialist, you will play a critical role in safeguarding federal or state information systems and ensuring they remain compliant, secure, and resilient across all phases of their lifecycle. Your work will directly support mission‑driven initiatives that protect sensitive government data, improve operational continuity, and reduce cyber risk in Agile, fast‑paced environments. You will lead risk assessments, analyze system controls, interpret compliance standards, and serve as a trusted advisor to engineering, operations, and leadership teams.

• Lead comprehensive reviews of management, operational, personnel, and technical controls throughout the system development lifecycle (SDLC).
• Identify and assess emerging security risks, weaknesses, and vulnerabilities associated with infrastructure, applications, and operations.
• Collaborate with developers and engineers to ensure identified risks are mitigated and documented effectively.
• Ensure compliance with federal and industry security standards including NIST SP 800‑53, OWASP Top 10, Common Criteria, DISA STIGs, and SANS Institute recommendations.
• Support and contribute to Authorization to Operate (ATO) packages, including preparation of SSPs, POA&Ms, and continuous monitoring (Con Mon) artifacts.
• Advise on policy alignment and security architecture improvements to support secure Agile delivery.
• Apply technical knowledge of networking, system administration, and development to assess the security posture of enterprise environments.
• Utilize Splunk to perform audit log analysis, generate system alerts, and support threat hunting and incident response activities.
• Recommend and implement automated logging, monitoring, and security reporting processes.
• Engage proactively with Agile development teams, product owners, and ISSOs to embed security into project planning and delivery.
• Translate complex technical findings into clear, actionable guidance for non‑technical stakeholders and leadership.
• Contribute to security knowledge‑sharing, training sessions, and cross‑functional security strategy initiatives.

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent professional experience).
• Minimum 7 years of experience in information security, IT risk management, or cybersecurity compliance, preferably in a federal or state agency environment.
• Demonstrated experience applying and interpreting NIST 800‑53, OWASP, and DISA STIGs in real‑world projects.
• Strong hands‑on technical background in networking, system administration, or software development.
• Proficiency with SIEM tools—especially Splunk—for event correlation, alerting, and compliance reporting.
• Familiarity with Agile development environments and Dev Sec Ops  principles.
• Strong written and verbal communication skills, with the ability to create reports and briefings for technical and non‑technical stakeholders.
• Active Top Secret clearance is required.
• U.S. Citizenship is required.

• Experience supporting federal ATO processes, RMF frameworks, or FISMA compliance efforts.
• Familiarity with continuous monitoring, vulnerability scanning tools, and risk scoring models.
• Certifications such as CISSP, CISM, Security+, CEH, or GSEC.

Equal Opportunity Statement: IMTS is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.