Information System Security Engineer; ISSE​/Cybersecurity Systems Engineer; TS Cleared

Req

NTT DATA seeks an Information System Security Engineer (ISSE) / Cybersecurity Systems Engineer with TS clearance to join our team in Quantico, Virginia, United States.

• Manage, monitor, and maintain IT infrastructure to ensure system uptime and optimal performance.
• Maintain performance to ensure that the throughput of the system does not degrade unexpectedly as the volume of work increases.
• Perform regular system backups, recovery procedures, and data management tasks.
• Provide technical support and assistance to users.
• Develop and maintain system documentation, including configurations, procedures, and troubleshooting guides.
• Plan and implement software updates, hardware upgrades, and migrations with minimal disruption to operations.
• Monitor and optimize the performance of the infrastructure.
• Develop and implement backup and recovery strategies.
• Ensure compliance with security and regulatory standards.
• Create, modify, and disable user accounts in accordance with Account Management Procedures.
• Monitor and review audit logs for suspicious activity.
• Develop and/or update Standard Operation Procedures (SOPs) for all activities.
• Collaborate and provide supporting artifacts and documentation to ISSO to support RMF process and ATO packages.
• Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information.
• Possess a strong understanding of the NIST Risk Management Framework, NIST Cybersecurity Framework, NIST SP 800‑53 revisions 5, Zero Trust Architecture, FIPS‑199, and FIPS 200.
• Possess familiarity with STIG Viewer, SCAP Compliance Checker (SCC), and Visio applications.
• Perform and review Tenable Security Center scans.
• Maintain hardware/software lists.
• Perform operating system, application, hardware/infrastructure hardening using DISA STIGs and/or SRGs for all appropriate systems.
• Implement the latest applicable Security Requirements Guide, STIG, and/or benchmarks; utilize SCAP tools and manual SRGs, STIGs, and/or benchmarks. Analyze latest STIG updates at least quarterly.
• Collaborate with System Administrators and Network Operations to address system vulnerabilities, track progress, and ensure security measures are implemented effectively.
• Conduct security control assessments and validate a system’s technical and non‑technical security features to mitigate known threats and vulnerabilities effectively.
• Ensure the completion of all necessary RMF products and reporting in accordance with policy and in collaboration with the Information System Security Officer/Security Control Assessor.
• Assist in updating documentation related to risk assessments, such as Risk Assessment Reports, Plan of Actions & Milestones (POA&M), based on assessment results.
• Conduct vulnerability analysis to facilitate the mitigation and determination of residual risk as required.
• Provide support for the continuous monitoring program as needed, especially when System Level Continuous Monitoring results are essential to meet ongoing authorization requirements.
• Assist in contingency planning, testing, and execution as necessary.
• Support the incident response process and actively participate in meetings with the program team, offering updates on project status.

• Bachelor’s degree in related fields (e.g., Computer Management Information Systems, Computer Science) or six (6) years applicable experience including four (4) years of specialized experience.
• Minimum five years supporting Information Security roles or responsibilities as listed above.
• One or more of the following certifications: ISC² CGRC, ISC² SSCP, CompTIA CySA+, CompTIA Security+ CE, and/or ISC² Certified in Cybersecurity.
• Active Top Secret security clearance.

• Experience with Big Fix, Nutanix, Splunk, Tenable Security Center, Security Compliance Checker, STIG Viewer, NMAP, Nipper, Wireshark, Microsoft Defender for Endpoint, RSA Authentication Manager, Microsoft Windows Active Directory, Cisco Firepower Management Center.
• Microsoft Certified Professional (MCP), Cisco Certified Network Associate (CCNA), and/or VMware Data Center Virtualization.
• Experience with Network Engineering or willingness to…