Plus
Включить Plus
Назад
Company hidden
2 месяца назад

Information System Security Engineer (Cybersecurity)

Формат работы
onsite
Тип работы
fulltime
Грейд
middle
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Information System Security Engineer (Cybersecurity): Designing and implementing cybersecurity controls and security architectures for high-impact government information systems with an accent on Risk Management Framework (RMF) and federal authorization requirements. Focus on vulnerability management, cloud security in AWS GovCloud and Azure, and maintaining comprehensive system security documentation for ATO packages.

Location: On-site in Washington, DC

Company

hirify.global provides secure, mission-focused information systems support for Intel and National Security environments.

What you will do

  • Design and implement security architectures and cybersecurity controls across enterprise and mission systems.
  • Lead Risk Management Framework (RMF) activities, including control implementation, assessment support, and continuous monitoring.
  • Develop and maintain critical security documentation, including System Security Plans (SSPs), POA&Ms, and ATO packages.
  • Execute vulnerability management efforts by reviewing scan results and coordinating remediation actions.
  • Implement and support cloud security within AWS GovCloud, C2S, SC2S, and Microsoft Azure environments.
  • Collaborate with network engineers and developers to ensure systems meet federal confidentiality, integrity, and availability standards.

Requirements

  • Top Secret (TS) Clearance with SCI eligibility.
  • 3-5 years of experience supporting cybersecurity or information assurance within enterprise or mission systems.
  • Working knowledge of NIST RMF, FISMA, and ATO processes.
  • Experience with cloud security (AWS GovCloud, Azure) and log analysis using Splunk.
  • Hands-on experience with vulnerability assessment tools such as Nessus, NMAP, Guardium, or WebInspect.
  • Must be able to work on-site in Washington, DC.

Nice to have

  • Certifications: CISSP, CISM, CASP+ CECAP, Security+, or AWS Certified Security – Specialty.
  • Experience working in high-side or multi-enclave (U/S/TS) environments.
  • Experience with Agile development teams and CI/CD pipelines.
  • Familiarity with NIST 800-53 Rev. 5.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →