CrawlJobs Logo

Information Systems Security Engineer

str.us Logo

STR

Location Icon

Location:
United States , Woburn

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

136000.00 - 170000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

STR has an exciting opportunity for a well-rounded cybersecurity professional to join our Cybersecurity/Risk Management Framework (RMF) program as a key contributor for classified programs. In this dynamic position, you will interface and collaborate with other Cybersecurity professionals (ISSMs, ISSOs), Security professionals (CPSOs, FSOs), and System Administrators from our Classified Information Technology (CIT) organization. Your responsibilities will include ensuring overall compliance, managing configuration changes, supporting security architecture, and staying abreast of current and future technologies.

Job Responsibility:

  • Conduct both vulnerability and compliance scans of Information Systems
  • Support the development of Risk Management Framework (RMF) documentation and control validation testing for Authority to Operate (ATO) accreditations
  • Develop cybersecurity requirements, design, and architecture for current and emerging program needs
  • Implement Information Assurance and Information Security protections and requirements in program development and execution environments
  • Apply required security controls to networking devices, databases, operating systems, and hardware/software components
  • Assist ISSMs and ISSOs in monitoring and resolving Plan of Action and Milestones (POA&M) to mitigate system vulnerabilities
  • Conduct reviews and technical inspections to identify and mitigate potential security weaknesses, ensuring all security features are implemented and functional
  • Support the completion of Continuous Monitoring requirements in accordance with RMF and NIST SP800-53 standards
  • Perform other tasks as assigned by the manager

Requirements:

  • Active Top Secret security clearance with the ability to obtain SAP and SCI access (U.S. citizenship required)
  • 3-5 years of technical (hands-on) experience in Information Assurance/Cyber Engineering, including requirements development and implementation
  • DoD 8570 IAM Level III certification (CISA, CISM, CISSP, etc.) or the ability to obtain within 6 months of hire
  • Knowledge of the DCSA Authorization and Assessment Process Manual (DAAPM) and the Joint Special Access Implementation Guide (JSIG)
  • Configuration, certification, and auditing/analysis of Windows/Linux operating systems and system virtualization in peer-to-peer, LAN & WAN networks
  • Managing and implementing DISA STIGs and benchmarks in various operating systems (Windows, RHEL, Ubuntu)
  • Using IA vulnerability/compliance scanning tools (e.g., NMap, ACAS, Nessus, Security Content Automation Protocol (SCAP))
  • Maintaining/managing Security Incident and Event Management (SIEM) and centralized auditing tools (e.g., Splunk, PowerStrux)
  • Familiarity with Microsoft Deployment Toolkit (MDT)
  • Supporting the hardening of new builds of Information Systems (IS) and ensuring full functionality before deployment
  • Scripting in Windows and/or Linux
  • Using McAfee/Trellix ePO, including familiarity with DLP components
  • Experience in one or more of following technical areas Artificial Intelligence, DevSecOps, Cloud or Containerization
  • Experience with NIST SP800-53 technical control implementation and assessment
  • Excellent communication skills, detail-oriented, self-starter with a focus on understanding STR CCS and CIT processes and procedures
  • A desire for continuous improvement while working in a team environment and the ability to handle multiple fast-changing priorities/projects effectively

Additional Information:

Job Posted:
December 12, 2025

Employment Type:
Fulltime
Work Type:
On-site work
Icon
STR - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Information Systems Security Engineer

Information Security Engineer

Cogoport is on a mission to bridge the $3.4 trillion Trade Knowledge and Executi...
Location
Location
India , Mumbai; Bangalore
Salary
Salary:
Not provided
https://cogoport.com/ Logo
Cogoport
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience in information security, cybersecurity, or security engineering
  • Strong knowledge of application security, cloud security (AWS/GCP/Azure), and network security
  • Experience with SIEM solutions, log analysis, and intrusion detection/prevention systems
  • Hands-on experience with secure coding practices in programming languages like Java, Python, or Go
  • Proficiency in security testing tools such as Burp Suite, Metasploit, OWASP ZAP, Nessus, and Wireshark
  • Understanding of encryption, authentication protocols, and PKI
  • Experience in DevSecOps and securing CI/CD pipelines
  • Strong knowledge of firewalls, VPNs, IDS/IPS, and endpoint security solutions
  • Hands-on experience with security automation and scripting
  • Excellent problem-solving skills and the ability to work in a fast-paced environment
Job Responsibility
Job Responsibility
  • Design, implement, and maintain robust security controls for applications, networks, and cloud infrastructure
  • Conduct vulnerability assessments, penetration testing, and risk analysis to identify security gaps
  • Develop and enforce secure coding practices for software development teams
  • Implement IAM (Identity & Access Management) policies and security monitoring solutions
  • Ensure compliance with security frameworks such as ISO 27001, SOC 2, GDPR, and NIST
  • Work closely with DevOps teams to integrate security into CI/CD pipelines
  • Monitor, analyze, and respond to security incidents and threats
  • Conduct threat modeling and security awareness training for engineering teams
  • Automate security processes using scripting (Python, Bash, etc.)
  • Collaborate with cross-functional teams to ensure secure architecture design
What we offer
What we offer
  • Entrepreneurial culture
  • Working with brightest minds in the industry
  • Driving digital transformation in logistics
  • Career growth
  • Fulltime
Read More
Arrow Right

Senior Systems Security Engineer

AnaVation is looking for a Sr. Systems Security Engineer to assist the customer ...
Location
Location
United States , Washington
Salary
Salary:
Not provided
anavationllc.com Logo
AnaVation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-10 years of experience in information system engineering and configuration management
  • 5 years of experience in control implementation and secure system engineering or design
  • Excellent communication skills
  • Hands on experience with: Security monitoring and evaluation, including audits, assessments, and risk management
  • SIEM tools (e.g., Splunk)
  • Vulnerability Scanning tools (e.g., Tenable, Nessus)
  • EDR tools (e.g., Crowdstrike)
  • Web App Scanning tools (e.g., Burpsuite, Acunetix)
  • Active Directory
  • SANs
Job Responsibility
Job Responsibility
  • Performing hands-on engineering, administration, and securing of multiple operating systems (e.g., Windows, RHEL, Unix variants), and applying DISA STIGs across diverse vendor technologies, including virtualization platforms (VMWare, Hyper-V), cloud environments (AWS, Azure, Google Cloud), and enterprise applications
  • Perform system administration tasks to include audit and log management, availability monitoring and remediation, account management and access reviews, and configuration update scheduling and performance
  • Contribute to the design and development of secure system architectures, ensuring security is integrated through system and network lifecycles
  • Evaluate, implement, and document security architecture solutions, aligning with compliance requirements and organizational mission needs
  • Ensure technical compliance with applicable security frameworks, standards, and regulations (e.g., DISA SITGs, NIST 800-53, RMF)
  • Conducting, configuring, and managing vulnerability scans
  • Conducting vulnerability remediations, patching, and system hardening
  • Collaborate with ISSOs, Assessors, System Owners, and other stakeholders to implement security controls
  • Support security assessments, audits, and accreditation/authorization (ATO) activities
  • Document security configurations, engineering solutions, and compliance evidence
What we offer
What we offer
  • Generous cost sharing for medical insurance for the employee and dependents
  • 100% company paid dental insurance for employees and dependents
  • 100% company paid long-term and short term disability insurance
  • 100% company paid vision insurance for employees and dependents
  • 401k plan with generous match and 100% immediate vesting
  • Competitive Pay
  • Generous paid leave and holiday package
  • Tuition and training reimbursement
  • Life and AD&D Insurance
  • Fulltime
Read More
Arrow Right

Information Security Engineer

Assurit is currently seeking an experienced Information Security Engineer to sup...
Location
Location
United States
Salary
Salary:
Not provided
assurit.com Logo
Assurit
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, Information Systems, or related discipline
  • or equivalent experience
  • 5+ years of experience defining security programs or processes for the protection of sensitive or classified information
  • Strong understanding of security control frameworks and requirements (e.g., NIST SP 800-53, RMF, ISO 27001, FIPS)
  • Experience performing vulnerability assessments, risk analysis, and security architecture reviews
  • Ability to evaluate system design and information flow to identify security risks and define required protections
  • Strong experience developing or maintaining security policies, standards, and procedures
  • Excellent analytical, problem-solving, and decision-making skills
  • Strong communication skills with the ability to create clear documentation and explain complex concepts to technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Analyze system and information sensitivity to determine appropriate security requirements, protections, and controls
  • Define, develop, and maintain security policies, standards, and procedures governing information protection
  • Conduct vulnerability assessments and risk evaluations based on information sensitivity, system architecture, and information flows
  • Identify security gaps and recommend risk-based mitigation strategies and improvements
  • Support the design and implementation of security controls, ensuring alignment with organizational and regulatory requirements
  • Assess security architectures and recommend enhancements to improve confidentiality, integrity, and availability
  • Collaborate with cross-functional teams to ensure security requirements are integrated into system design, development, and operations
  • Produce clear documentation, reports, and artifacts supporting security analysis, decision-making, and audit readiness
  • Assist with continuous monitoring, metric development, and policy updates to support evolving mission needs
What we offer
What we offer
  • medical and dental coverage
  • paid time off
Read More
Arrow Right

Information Systems Security Engineer

Hoplite Solutions is seeking Information Systems Security Engineers (ISSE) to jo...
Location
Location
United States , Fort Meade
Salary
Salary:
185000.00 - 225000.00 USD / Year
hoplitesolutions.com Logo
Hoplite Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active TS/SCI with Polygraph
  • Bachelor’s degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required
  • 12 years' experience as an ISSE on programs and contracts of similar scope, type, and complexity to include recent experience within the 5 years with Cybersecurity principles and technology, including access/control, authorization, identification and authentication, PKI, network and enterprise security architecture
  • DoD 8570 compliance
  • Both Information Systems Security Engineering Professional (ISSEP) and CISSP Certifications are required
Job Responsibility
Job Responsibility
  • Perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Cybersecurity standards and regulations, and recommend mitigation strategies
  • Validate and verifies system security requirements definitions and analysis and establishes system security designs
  • Design, develop, implement and/or integrate Cybersecurity and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements
  • Review certification and accreditation (C&A) documentation, provide feedback on completeness and compliance of its content
  • Support security authorization activities in compliance with CSS Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF), the NIST Risk Management Framework (RMF) process, and prescribed CSS business processes for security engineering
  • Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave environments
  • Apply knowledge of Cybersecurity policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments
  • Interact with the customer and other project team members
  • Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of Cybersecurity architectures, systems, or system components
  • Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures
What we offer
What we offer
  • 7% employer 401k contribution
  • fully paid healthcare for our employees
  • outstanding training benefits
  • company funded life insurance and short-term disability insurance
  • Fulltime
Read More
Arrow Right

Senior Information System Security Officer

We are seeking a highly skilled and mission-driven Senior Information Systems Se...
Location
Location
United States , Clarksburg
Salary
Salary:
Not provided
imts.us Logo
Innovative Management & Technology Services
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or a related field (or equivalent combination of education and experience)
  • 8+ years of progressive experience in information systems security, with at least 3 years in a senior-level or lead ISSO role supporting federal or state government agencies
  • Strong working knowledge of: NIST 800-53, RMF, FISMA, OWASP Top 10, and SANS Institute standards
  • SAFe Agile environments and integrating security in Agile workflows
  • Networking, Linux/Windows system administration, and secure software development practices
  • Cloud platforms (AWS, Azure, GCP) and related security tools (e.g., AWS Security Hub, Azure Defender)
  • Experience in managing security documentation, participating in audits, and working with compliance frameworks
  • Relevant certifications such as CISSP, CISM, Security+, CEH, or equivalent
  • Active Top Secret clearance is required
  • U.S. Citizenship is required
Job Responsibility
Job Responsibility
  • Lead the implementation and maintenance of system security controls in compliance with federal cybersecurity frameworks, including NIST SP 800-53, RMF, OWASP, DISA STIGs, and Common Criteria
  • Oversee the full lifecycle of Authorization to Operate (ATO) processes, including preparation of System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, and risk assessments
  • Serve as a senior security advisor and liaison to system owners, developers, DevOps engineers, and government stakeholders
  • Participate in technical reviews of system architecture and ensure secure design of virtualized and software-defined infrastructures
  • Support integration of security controls into CI/CD pipelines using DevSecOps principles and tools (e.g., Jenkins, GitLab CI, SonarQube, Snyk)
  • Provide security engineering support for modern cloud environments, including AWS, Azure, or Google Cloud Platform, and assess cloud-native security capabilities
  • Conduct vulnerability assessments, interpret scan results from tools like Tenable, Nessus, Splunk, or Qualys, and lead remediation efforts
  • Mentor junior ISSOs and analysts on security policies, best practices, and tool usage
  • Ensure continuous monitoring activities are aligned with organizational risk tolerance and compliance goals
What we offer
What we offer
  • competitive compensation
  • excellent benefits including tuition reimbursement and employer-contributed 401K
  • referral bonuses
  • Fulltime
Read More
Arrow Right

Information System Security Engineer

Leave things better than you found them - share and share alike, let others bene...
Location
Location
United States , Annapolis Junction
Salary
Salary:
150000.00 - 225000.00 USD / Year
lufburrow.com Logo
LufCo
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • B.S. degree in Computer Science or other related field
  • 4 years of additional experience may be substituted for a bachelor’s degree
  • CISSP Certification
  • Fourteen (14) years’ experience is required
  • Strong troubleshooting skills and ability to collaborate with others to determine root cause
  • Strong communication and requirements solicitation skills
  • TS/SCI with polygraph, U.S. citizen
Job Responsibility
Job Responsibility
  • Security engineering representative on engineering teams for the design, development, implementation, and integration of secure networking, computing, and enclave environments
  • Hands on application and knowledge of IA policy, procedure, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments
  • Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures
  • Security planning, assessment, risk analysis, and risk management
  • Identify overall security requirements for the proper handling of Government data
  • Interact with the customer and other project team members
What we offer
What we offer
  • Competitive salary
  • generous PTO
  • health/dental/vision insurance
  • 401K matching
  • tuition reimbursement
  • Paid Time Off
  • 401K Contribution and Employer Match Contributions
  • Medical, Dental, and Vision Coverage
  • Employee Assistance Program
  • Fulltime
Read More
Arrow Right

Information Security Engineer

Responsible for maintaining the integrity and security of enterprise-wide cyber ...
Location
Location
United States , Reston
Salary
Salary:
Not provided
ltconsultingllc.net Logo
LT Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active TS/SCI clearance
  • Bachelor’s degree in Computer Science, Engineering or a related field
Job Responsibility
Job Responsibility
  • Maintaining the integrity and security of enterprise-wide cyber systems and networks
  • Supporting cyber security initiatives through both predictive and reactive analysis, articulating emerging trends to leadership and staff
  • Coordinating resources during enterprise incident response efforts, driving incidents to timely and complete resolution
  • Employing advanced forensic tools and techniques for attack reconstruction, including dead system analysis and volatile data collection and analysis
  • Supporting internal HR/Legal/Ethics investigations as forensic subject matter expert
  • Performing network traffic analysis utilizing raw packet data, net flow, IDS, and custom sensor output as it pertains to the cyber security of communications networks
  • Reviewing threat data from various sources and develops custom signatures for Open Source IDS or other custom detection capabilities
  • Correlating actionable security events from various sources including Security Information Management System (SIMS) data and develops unique correlation techniques
  • Utilizing understanding of attack signatures, tactics, techniques and procedures associated with advanced threats
  • Developing analytical products fusing enterprise and all-source intelligence
Read More
Arrow Right

Senior Defensive Security Engineer – Embedded Systems

Silvus is seeking a Senior Defensive Security Engineer – Embedded Systems who wi...
Location
Location
United States , Los Angeles
Salary
Salary:
140000.00 - 200000.00 USD / Year
silvustechnologies.com Logo
Silvus Technologies (International)
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (e.g., Mathematics, Computer Engineering)
  • Minimum 5 years in cybersecurity, with at least 2 years in defensive security roles focused on Linux-based systems
  • Expertise in Linux network security, secure coding, or embedded systems security
  • Coding/scripting in C/C++, Python, Bash, or assembly for Linux environments
  • Familiarity with Linux security tools like Auditd, Lynis, or vulnerability scanners
  • Security Clearance: Active U.S. Government SECRET clearance or the ability to obtain one within 12 months of hire
  • Must be a U.S. Person (U.S. Citizen, or U.S. Permanent Resident) due to clients under U.S. federal contracts
Job Responsibility
Job Responsibility
  • Design and implement Linux-based security architectures for embedded systems, focusing on secure boot, and kernel hardening
  • Develop and enforce Linux security features, including iptables, netfilter, and auditd for intrusion detection and prevention
  • Conduct security assessments and audits of Linux-based embedded systems to identify and mitigate vulnerabilities
  • Integrate Linux security best practices into the development lifecycle (DevSecOps), emphasizing secure coding and configuration management
  • Manage vulnerabilities in Linux-based embedded systems, including timely patching and kernel updates
  • Train teams on Linux security practices, including privilege management, file system permissions, and container security
  • Participate in incident response planning and execution for Linux-based embedded systems
  • Implement Linux-native encryption and authentication mechanisms (e.g., dm-crypt, OpenSSL, PAM) for secure communications
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy