Information Systems Security Engineer - Remote

Overview

Northstrat is seeking an Information Systems Security Engineer to join our team. The ideal candidate will have experience in the following areas: secure software engineering practices in support of Department of Defense (DoD) or Intelligence Community (IC) customers, application of NIST Special Publications 800 security controls and the Risk Management Framework (RMF) process, and system vulnerability scanning.

In Short

• Planning and managing the system application of NIST Special Publications 800 series security controls.
• Perform system vulnerability scanning, documenting results, and working with the development team to address security findings.
• Generation of comprehensive system security documentation and artifacts, to include a Plan of Action and Milestones (POA&M), for obtaining and maintaining Interim Authorization to Test (IATT), Authority to Connect (ATC) and Authorization to Operate (ATO).
• Work collaboratively with team members, Information Assurance, Information Security Engineering, and other Subject Matter Experts to resolve security issues.
• Maintain thorough documentation of all activities and communications through ticketing systems, operational briefs, and status reports.

Requirements

• Experience in secure software engineering practices.
• Knowledge of NIST Special Publications 800 security controls.
• Familiarity with the Risk Management Framework (RMF).
• Proficient in system vulnerability scanning.
• Strong documentation skills.
• Ability to collaborate with various teams and experts.

Benefits

• Opportunity to work on critical DoD and IC projects.
• Collaborative team environment.
• Professional development opportunities.