Information Systems Security Engineer; ISSE

Information Systems Security Engineer (ISSE)

Byte Systems, a subsidiary of VTG, is seeking an Information Systems Security Engineer (ISSE) to work in Chantilly, Tyson's Corner, or Warrenton, VA. The ISSE will support assessment and authorization (A&A) of critical systems, detect adversary behavior, and improve the defensive posture of our customer's information systems. The successful candidate will use various tools and methodologies to evaluate systems and applications for vulnerabilities, verify protection against adversary intent, and evaluate cyber security processes to protect and defend against adversaries.

• Ensure that security is engineered into an information system from design through deployment and operation
• Configure systems securely (OS, network devices, applications)
• Implement and validate security controls
• Provide evidence for Assessment & Authorization (A&A)
• Support continuous monitoring activities
• Support vulnerability scans and remediation
• Ensure secure baseline configurations are applied and maintained
• Support Dev Sec Ops  efforts in modern environments
• Assist in developing mitigation strategies
• Contribute to and help maintain:
  • System Security Plan (SSP)
  • Security architecture diagrams
  • Plans of Action & Milestones (POAMs)

• Active Top Secret/Sensitive Compartmented Information (TS/SCI) clearance, with polygraph.
• Bachelor’s Degree in Computer Science, Information Technology, or related technical discipline, or equivalent combination of education, training, or experience.
• Minimum eight (8) years of cybersecurity expertise (or relevant degree plus five (5) years).
• Ability to work closely with stakeholders, developers, and external teams including customer security managers (ISSMs), ISSO, organizational leadership, and key personnel.
• Identify requirements for documentation associated with system categorization, the System Security Plan, and system risk assessment as required under NIST 800‑53/53A.
• Previous experience completing customer Assessment and Authorization (A&A) processes from start to end.
• Assess system compliance with NIST requirements, identify weaknesses, and evaluate remedial actions.
• Support control implementation assessment, reporting, and monitoring processes using cyber security and assessment management systems.
• Understand perimeter controls (firewalls), access control mechanisms, and network architectures.
• Strong understanding of methodologies for researching and documenting software and hardware vulnerabilities.
• Skilled in cross‑team collaboration and effective communication to fulfill accreditation requirements.
• Strong verbal and written communication/cooperation within a team context.
• Ability to work in fast‑paced customer environments.
• Document processes and procedures in CONOPS, system security, contingency, configuration management, and related plans.
• Facilitate customer concurrence for risk‑based decisions requiring waivers.
• Assist the customer with decisions impacting the security posture and compliance of their systems and networks with NIST 800‑53 and revisions.

• Knowledge of the customer's organization, network systems, and infrastructure, processes, procedures, and tools.
• Experience in scripting/programming languages such as Bash, Power Shell, or Python.
• Proficiency in Linux, Windows, and TCP/IP networking.
• Experience with vulnerability and risk assessment tools such as Elasticsearch or Splunk SIEMs, Rapid7 Nexpose, and IDS/IPS monitoring and alerting.

Seniority level:
Mid‑Senior level

Employment type:

Full‑time

Job function:
Information Technology

Industries:
Defense and Space Manufacturing

Referrals increase your chances of interviewing at VT Group (VTG) by 2x