BreakPoint Labs

Visit website

Information System Security Engineer

  • Cybersecurity
  • Full-time
  • Dahlgren, VA

2023-07-10 23:59:53 UTC

BreakPoint Labs is seeking an Information System Security Engineer (ISSE) to support RMF package creation and maintenance for assigned information system(s), using standards such as DoD Directive 8510.01, DoD Instruction 8500.01, CNSSI 1253, and NIST Publications.

The ISSE will be responsible for the following:
- Deliver IT, system/security engineering, and technical assistance support as requested by stakeholders.
- Accurately and efficiently record applicable information in the Enterprise Mission Assurance Support Service (eMASS) suite of modules, to include Asset Manager, in accordance with approved procedures and guidance.
- Apply and implement standards, directives, guidance, policies, and security controls to information technology/computing environments.
- Assist with the maintenance of the security posture of IT systems to include patching, implementing STIGs, and applying new security measures, as required.
- Develop and maintain documentation to include System Security Plans (SSPs), Risk Assessment Reports (RAR), Security Controls Traceability Matrix (SCTM), and other Assessment & Authorization (A&A) artifacts (e.g. plans, procedures, policies), ensuring relevancy and accuracy.
- Support vulnerability/risk assessment analysis to support Assessment & Authorization (A&A), including system self-assessments.
- Conduct scans of the assigned environment(s) using tools such as SCAP (SCC), Tenable Security Center/Nessus, eMASSter, EvaluteSTIG, and other vulnerability/compliance verification tools, as required.
- Assist in the research and addressing of information security issues as required, and develop and maintain the Plan of Action and Milestones (POA&M) and support remediation activities.
- Communicate technical information in the form of verbal and visual updates, technical reports, and briefings. Therefore writing/documentation and presentation skills are required.
- Employ organizational and interpersonal skills to succeed in a fast-paced environment.

Required Experience

- Professional experience serving as an ISSE or related (e.g. Navy Qualified Validator NQV))
- Prior experience maintaining and/or configuring operating systems such as Windows or Linux.
- Working knowledge of DoDI 8510, CNSSI 1253, NIST 800-53
- Experience utilizing DoD-approved scanning/testing tools (e.g. Nessus, SCAP, EvaluateSTIG, eMASSter, etc.) is required
- Experience referencing and/or utilizing the Navy RMF Process Guide is preferred.
• Strong documentation, analysis, and oral/written communication skills are required.
• Effective time/task management is essential.

Certifications Required: IAM LEVEL II & Linux and/or Windows certification