Information Systems Security Engineer; ISSE), SME Security Clearance

Position: Information Systems Security Engineer (ISSE), SME with Security Clearance
Would you like to perform rewarding work while contributing to the success of an established, growing company? Navstar is an award-winning organization that has a proven track record of successfully providing IT services and solutions both as a prime and sub-contractor on mission-focused IT programs. Our employees are integral players in support of mission-critical programs focused on our National Security.

Role

Description:

The Senior ISSE shall deliver and lead threat-informed cybersecurity products - cybersecurity risk assessments, architecture reviews, and engineering guidance that bring sound, accurate, timely, and actionable service to mission partners. This includes:
* Conduct cybersecurity risk assessments and provide prioritized risk mitigation recommendations in support of the customer's mission.
* Support the design, implementation, and operation of real-time capabilities to discover, detect, analyze, and mitigate threats and vulnerabilities.
* Analyze candidate architectures by evaluating against defined security requirements to identify security gaps, and provide recommended mitigation strategy.
* Research and evaluate candidate emerging technologies to determine cybersecurity effectiveness.
* Aid stakeholders through the development, refinement, delivery, and implementation of innovative solutions and capabilities.
* Engage stakeholders to ensure security objectives, protection needs, security requirements and associated validation methods are defined.
* Validates and verifies system security requirements definitions and analysis and establishes system security design.
* Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing and enclave environment to include those with multiple enclaves and with differing data protection/classification requirements.
* Assist architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions.
* Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.
* Reviews C&A documentation, providing feedback on completeness and compliance of its content.

Required Skills and Qualifications:

* To be eligible for this position you must hold an active TS/SCI clearance with Polygraph.
* Bachelor of Science degree from an accredited university ideally in Computer Science, Information Assurance, Information Security System Engineering or related field with a minimum of 20 years of experience as an Information Systems Security Engineer (ISSE) or System Engineer.
* CISSP OR CASP certification required.
* CISSP - ISSEP DoD approved 8570 baseline certification for Level.
* Strong writing skills.
* Confidence and ability to present briefing to senior level DoD officials in both prepared briefings and/or in ad hoc discussions.
* Expertise in the Risk Management Framework (RMF) and conducting cybersecurity risk assessments.
* Expertise in network technology and systems security engineering. Experience in identifying, researching, characterizing, and documenting security weaknesses related to operating systems, software applications, firmware, network hardware components, as well as network architecture design to identify protection needs and documented policies and procedures.
* Experience developing and documenting system security requirements and conducting requirements gap analysis.
* Experience with security monitoring and incident response capabilities.
* Experience with emerging technologies such as Zero Trust, Cloud Computing, etc.
* Knowledge of, and practical experience with the NIST Special Publications 800 Series, CNSSI 1253, and DoD 8500.
* Ability to work independently within a schedule and with little direction. Desired Skills and

Qualifications:

* Experience with the following: JEE (EJB, JPA, JTA, JAX-B, JAX-RS, JAX-WS), SQL, application servers (Tomcat, Web Logic, JBoss), scripting.
* Experience with high level requirements management including requirements decomposition, secure systems engineering and development, trade-off analysis, interface control, and testing and continuous integration.
* Experience in software development on Agile teams using Agile Developer practices such as Pair Programming, TDD, Refactoring, and ATDD.
* Experience with FITNesse, Mockito, Cucumber, Unified Functional Tester (UFT), Selenium.
* Experience with Behavior Driven Development (BDD).
* Secure Software development (i.e., Layer 7 Policy).
* Experience with the Scaled Agile Framework (SAFe) methodology, SAFe Agilest Certification, or experience as a member of an agile team.
* Additional experience in J2EE, Python, C/C++, SQL, SOAP, WSDL, Postgres, Oracle, Mongo, Power Shell a plus. Pay Rate:
In compliance with Maryland's Equal Pay for Equal Work law, the annual base salary…