Information System Security Engineer – ISSE

This is a fully remote position, open to applicants in Ohio.

📋 Description

• Design and implement secure solutions to support Cyber Threat and Defensive Operations within DoD enclave environments.

• Integrate, configure, and oversee Microsoft Defender for Cloud, Sentinel, Azure Policy, Azure Monitor, and Log Analytics.

• Streamline threat assessment processes, security reporting, and continuous monitoring workflows through automation.

• Create and sustain Azure-based detections, dashboards, alerts, and automated response playbooks.

• Conduct and document technical security assessments to pinpoint vulnerabilities and propose mitigation strategies.

• Enforce and validate security controls and secure configurations that comply with DoD, NIST, and organizational policies.

• Assist in all stages of the RMF lifecycle, including the selection, implementation, assessment, authorization, and continuous monitoring of controls.

• Address or rectify security deficiencies identified during assessments, testing, or audits, and provide risk acceptance recommendations to the ISSM.

• Analyze, evaluate, and report on trends in system and organizational security posture to the ISSM/ISSO.

• Aid in audit preparation, artifact collection, and evidence validation for compliance initiatives.

• Ensure that security operations, configuration changes, and maintenance tasks are thoroughly documented and up to date.

• Assess cybersecurity tools, compensating controls, and security technologies to ensure that risk is minimized to acceptable levels, and communicate findings to the ISSM.

• Collaborate with the ISSM/ISSO to develop and maintain RMF documentation, including System Security Plans (SSPs), security diagrams, control evidence, and ATO package materials.

• Ensure that security documentation and SSPs are kept current and compliant with relevant DoD and program-specific policies.

• Support incident response investigations by examining security logs, alerts, and system activity.

⛳️ Requirements

• Must be a U.S. citizen.

• Hold a Top Secret clearance with SCI eligibility.

• Have 5+ years of relevant experience in SCI/SAP environments.

• Previous experience as an ISSE or security engineer supporting RMF processes is required.

• Possess advanced technical skills and experience in one or more of the following areas: Active Directory Domain Services, Active Directory Federated Services, Active Directory Certificate Services, Windows Server Update Services, ePO, Splunk, STIG/SCAP, YUM, ACAS Automation, and Azure Monitor / Log Analytics.

• Security+ certification is mandatory.

• Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent experience.

• 5-8 years of proven performance in related technologies.

🏝️ Benefits

• Competitive benefits package.

• Awards and recognition program.

• Personalized attention from ARS Senior Managers.