Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

Information System Security Engineer

AMPSIGHT

Information System Security Engineer

Ashburn, VA
Full Time
Paid
  • Responsibilities

    ABOUT THE INFORMATION SYSTEM SECURITY ENGINEER (ISSE) POSITION :

    If you are passionate about technology and want to build a successful career in cloud, analytics and machine learning, AMPSIGHT is interested in you.

    The position is based in the Washington, DC Metro Area.

    INFORMATION SYSTEM SECURITY ENGINEER (ISSE)

    Lead the design, development, and documentation of NIST 800-53 security controls for various software development projects and information systems. Work with both engineers and Security Control Assessors to lead software systems through the DoD Risk Management Framework (RMF) to achieve Authority to operate. Recommend and implement tools and processes to automate security accreditation.

    • Source Code Security Analysis (both Dynamic & Static)

    • Assessment and Authorization including selecting/implementing security controls

    • Provide security engineering leadership and expertise in assisting with the development and delivery of security documentation packages including Software Security Plan (SSP)

    • Cyber Security testing, evaluation, and reporting

    • Support assessment and authorization activities with various government authorities and Security Control Assessor (SCA) required system accreditations

    • Platform hardening

    • Conduct compliance assessments on complex systems using various compliance assessment methodology, tools, and applications

    • Understanding of secure coding best practices and approaches to applying defensive security techniques such as input validation and fuzz testing.

    • Perform Static Code Analysis (SCA) and Dynamic Source Code Analysis on software code base and work collaboratively with software developers to remedy vulnerabilities.

    • Knowledge of ICD 503,NIST 800-53, DOD Risk Management Framework (RMF)

    • Creating and maintaining various security documents such as the Security Control Plan, System Backup and Recovery Plans (SBRP) and Plan of Action and Milestone (POA&M) tables

    • Possess briefing and technical writing skills

    • AWS Cloud experience a plus

    • Container / Kubernetes security a plus

    BENEFITS:

    • Bonus eligible
    • Comprehensive benefits package including 401K with matching
    • Stock options
    • Work from home or in our Ashburn, VA location with flexible work schedule
    • Incubator work environment