System Engineer - Information Systems Security Officer Job at Synergy ECP (Annapolis Junction)

VP, Information Security Officer (ISO), Markets, Taiwan

The Chief Information Security Office (CISO) is home to deeply talented colleagu...

Location

Taiwan , Taipei

Salary:

Not provided

Citi

Expiration Date

Until further notice

Requirements

10+ years of relevant experience in Information & Cybersecurity space or related domains such as risk management, auditing, consulting & advisory services
One or more of IS/Cybersecurity industry standard certifications (e.g. CISA, CISSP, CISM, SANS GIAC, CEH, CRISC, CCSP,SSCP, CompTIA Security+ etc.) are mandatory
Strong understanding of Information security domains with hands on experience of performing application security risk assessments covering controls such as Identity & Access Management, API Security, Cloud/SaaS Security, Cryptography, Sensitive Data protection, Audit Logging/Monitoring, Secure SDLC controls
Sound knowledge of Network Security controls (including Firewalls, IDS/IPS) and Application Vulnerability Assessments/Source code & component vulnerability scanning related controls
Good understanding of Markets Business and Applications such as such as trading platforms, order management systems, risk management systems, pricing engines etc. is an advantage
Hold relevant professional certificates recognized by local authorities
Sound knowledge of IS/Cybersecurity related local regulatory, and compliance requirements in the financial services industry and Securities & Futures Markets
Understanding of policy compliance and how it relates to risk
Extensive knowledge of information security risk assessment methodologies/industry standards
Demonstrated ability to take ownership and follow up on issues

Job Responsibility

Act as a Trusted Security Advisor to business and technology teams, guiding them on IS/Cyber risks
Appropriately assess risks when business decisions are made, demonstrating consideration for the firm's reputation and safeguarding Citigroup, its clients and assets
Drive compliance with applicable Information & Cybersecurity laws, rules and regulations, adhering to relevant Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency
Serve as the local point of contact of all information security matters, including management, governance, compliance, and third-party risk management
Manage local audit and regulatory engagements impacting CISO
Drive country-specific control implementations or special programs, where deemed necessary based on risk assessments or local regulatory requirements
Work with business & technology management to drive the information security program and govern risk management activities including CSRA (Cybersecurity Risk Appetite) reporting
Work with the internal Applications Development function to facilitate improvements in both architectural and application security posture
Provide strategic risk guidance for business and technology projects, including the evaluation and recommendation of security controls and corrective actions to mitigate/remediate risks
Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company's reputation

What we offer

Extensive on-the-job training and exposure to senior leaders
Access to telehealth options, health advocates, confidential counseling
Expanded Paid Parental Leave Policy
Access to an array of learning and development resources
Generous paid time off packages
Resources and tools to volunteer in the communities

Fulltime

Information Systems Security Officer

Hoplite Solutions is seeking Information Systems Security Officers (ISSO) to joi...

Location

United States , Fort Meade

Salary:

125000.00 - 195000.00 USD / Year

Hoplite Solutions

Expiration Date

Until further notice

Requirements

Active TS/SCI with Polygraph
A Bachelor’s degree in Computer Science, Information Technology Engineering, or a related field may be substituted for 4 years’ experience and 10 years of related work experience in the field of security authorization
DoD 8570.1 compliant IAM Level I certification, such as the CompTIA Security+ certification. A higher-level certification, such as GSLC, CAP, CASP, CISM and/or CISSP will also be accepted
A working knowledge of the security authorization processes and procedures as defined in the RMF in NIST SP800-37 and familiarity with the ICD503, CNSSI1253, SP800-53, etc.
Knowledge of commercial security tools and their uses
Experience with hardware/software security implementations
Knowledge of different communication protocols, encryption techniques/tools, and PKI and authorization services
Familiarity with security incident management, experience collaborating with Incident Response Teams, and able to provide viable recommendations for the resolution or computer security incidents and vulnerability compliance
Experience creating and presenting documentation and management reports
Must put forward a professional behavior that enhances productivity and promotes teamwork and cooperation

Job Responsibility

Maintain the appropriate operational security posture for assigned systems, programs, and/or enclaves
Provide guidance and technical expertise on all matters that impact or effect the security of the information system
Assist in the development and execution of an enterprise level continuous monitoring program to minimize security risks and ensure compliance with that program on a routine basis
Developing, updating, and submitting the System Security Plan and other required documentation that make up the Security Authorization Package
Conduct configuration management for security-relevant changes to software, hardware, and firmware
Perform and deliver security impact analyses of changes to the system or its environment of operation
Assess the effectiveness of system security controls on an ongoing basis to determine system security status
Maintain and enforce IT security policies and implementation guidelines for customer systems in diverse operational environments
Provides configuration management for security-relevant information system software, hardware, and firmware

What we offer

7% employer 401k contribution
fully paid healthcare for our employees
outstanding training benefits
company funded life insurance and short-term disability insurance

Fulltime

Senior Information System Security Officer

We are seeking a highly skilled and mission-driven Senior Information Systems Se...

Location

United States , Clarksburg

Salary:

Not provided

Innovative Management & Technology Services

Expiration Date

Until further notice

Requirements

Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or a related field (or equivalent combination of education and experience)
8+ years of progressive experience in information systems security, with at least 3 years in a senior-level or lead ISSO role supporting federal or state government agencies
Strong working knowledge of: NIST 800-53, RMF, FISMA, OWASP Top 10, and SANS Institute standards
SAFe Agile environments and integrating security in Agile workflows
Networking, Linux/Windows system administration, and secure software development practices
Cloud platforms (AWS, Azure, GCP) and related security tools (e.g., AWS Security Hub, Azure Defender)
Experience in managing security documentation, participating in audits, and working with compliance frameworks
Relevant certifications such as CISSP, CISM, Security+, CEH, or equivalent
Active Top Secret clearance is required
U.S. Citizenship is required

Job Responsibility

Lead the implementation and maintenance of system security controls in compliance with federal cybersecurity frameworks, including NIST SP 800-53, RMF, OWASP, DISA STIGs, and Common Criteria
Oversee the full lifecycle of Authorization to Operate (ATO) processes, including preparation of System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, and risk assessments
Serve as a senior security advisor and liaison to system owners, developers, DevOps engineers, and government stakeholders
Participate in technical reviews of system architecture and ensure secure design of virtualized and software-defined infrastructures
Support integration of security controls into CI/CD pipelines using DevSecOps principles and tools (e.g., Jenkins, GitLab CI, SonarQube, Snyk)
Provide security engineering support for modern cloud environments, including AWS, Azure, or Google Cloud Platform, and assess cloud-native security capabilities
Conduct vulnerability assessments, interpret scan results from tools like Tenable, Nessus, Splunk, or Qualys, and lead remediation efforts
Mentor junior ISSOs and analysts on security policies, best practices, and tool usage
Ensure continuous monitoring activities are aligned with organizational risk tolerance and compliance goals

What we offer

competitive compensation
excellent benefits including tuition reimbursement and employer-contributed 401K
referral bonuses

Fulltime

Information System Security Officer

Our team members are subject matter experts in both cybersecurity and US Governm...

Location

United States , Washington, DC

Salary:

Not provided

Barbaricum

Expiration Date

Until further notice

Requirements

Active U.S. DoD Top Secret clearance with SCI eligibility
Active DOD 8140 or 8570 Certification (e.g. CISSP or Security+)
Active IAT II certification
Minimum 2 years experience directly supporting a customer’s ATO/RMF process
Proven experience using the eMASS or XACTA accreditation management software systems
Be at customer site 5 days per week
Ability to travel domestically and internationally 25% of the time if needed

Job Responsibility

Achieve ATOs for Palantir software across multiple government customers with minimal oversight
Partner with engineers to analyze software, interpret security requirements, and plan effective control implementations
Provide outstanding customer service, policy expertise, and high-quality documentation
Serve as the primary in-person point of contact for one or more U.S. Government customers on cybersecurity and compliance requirements and questions
Independently interpret the findings of vulnerability scanning utilities such as ACAS (Tenable Nessus) and SCAP (STIG benchmark) and manage a Plan of Actions and Milestones (POA&M) for remediation of findings

Information Systems Security Engineer

Barbaricum is seeking an Information Systems Security Engineer (ISSE) providing ...

Location

United States , Warren, MI

Salary:

Not provided

Barbaricum

Expiration Date

Until further notice

Requirements

Recommend security designs and develop architectures for combat ground platforms
Integrate cybersecurity tasks within systems engineering processes during system acquisition
Provide expertise in Cybersecurity and Information Assurance for combat vehicles
Implement Cross Domain Solution (CDS) designs as part of national cybersecurity initiatives
Conduct cyber threat assessments and recommend solutions for identified deficiencies
Support cybersecurity testing and certification, ensuring system compliance
Facilitate certification processes with Army and national cybersecurity offices
Translate security controls into system requirements and verify threat mitigations
Participate in technical meetings and provide cybersecurity input on C5ISR integration
Prepare and present cybersecurity-related materials and reports

Job Responsibility

Recommend security designs and develop architectures for combat ground platforms
Integrate cybersecurity tasks within systems engineering processes during system acquisition
Provide expertise in Cybersecurity and Information Assurance for combat vehicles
Implement Cross Domain Solution (CDS) designs as part of national cybersecurity initiatives
Conduct cyber threat assessments and recommend solutions for identified deficiencies
Support cybersecurity testing and certification, ensuring system compliance
Facilitate certification processes with Army and national cybersecurity offices
Translate security controls into system requirements and verify threat mitigations
Participate in technical meetings and provide cybersecurity input on C5ISR integration
Prepare and present cybersecurity-related materials and reports

System Security Engineer

As a system security engineer, you play a pivotal role in securing our hardware ...

Location

United States , Annapolis Junction

Salary:

99000.00 - 225000.00 USD / Year

Booz Allen Hamilton

Expiration Date

Until further notice

Requirements

4+ years of experience as a systems security engineer in programs that encompass systems security architecture development, requirements analysis, design, production, integration, test, and transition into operations
4+ years of experience performing Information Systems Security Officer functions in support of USCYBERCOM or IC projects and offices
4+ years of experience working with the Risk Management Framework (RMF) process
Experience assessing security vulnerabilities in software or systems and implementing mitigations
Experience working on teams using Agile technologies, including Atlassian Suite
Experience working with Amazon Web Services (AWS) cloud technology
Top Secret clearance
Bachelor’s degree in CS, Computer Engineering, or Information Systems
DoD 8570 compliant IAT Level II Certification

Job Responsibility

Guide your team of professionals as they maintain existing applications and keep systems working in sustainment mode
Use programming and scripting languages, including Python and Bash, to continuously enhance and maintain the application, troubleshoot any issues that arise operationally, and upgrade the system to meet security requirements
Advise our government clients on the best ways to improve and modernize the existing systems

What we offer

Health, life, disability, financial, and retirement benefits
Paid leave
Professional development
Tuition assistance
Work-life programs
Dependent care
Recognition awards program

Principal Security Engineer

We’re seeking a Principal Security Engineer with deep expertise in cloud securit...

Location

United States , San Francisco

Salary:

136000.00 - 241000.00 USD / Year

Ethos

Expiration Date

Until further notice

Requirements

10+ years of experience in security engineering or architecture roles
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field from a reputable institution
Deep expertise in cloud platforms (particularly AWS), including infrastructure-as-code (e.g., Terraform, CloudFormation)
Strong experience in secure software development and application security (e.g., OWASP Top 10, SAST, DAST, threat modeling)
Experience designing and implementing zero-trust architectures, secure API gateways, and identity/access controls
Proficient in scripting or development languages (e.g., Python, Go, JavaScript) and secure coding practices
Demonstrated leadership in cross-functional security initiatives and technical mentorship
Ability to come into our San Francisco, CA office once a week

Job Responsibility

Design and implement secure architectures for applications, APIs, microservices, and containerized workloads
Develop and enforce application security best practices across SDLC
partner with DevOps and engineering teams to integrate security into CI/CD pipelines
Conduct threat modeling, security design reviews, and risk assessments for new and existing systems
Evaluate and implement cloud security tools, controls, and frameworks (e.g., CSPM, CWPP, IAM, KMS, logging, and monitoring)
Provide technical leadership and mentorship to security engineers, software developers, and DevOps personnel
Lead response to complex security incidents or architectural flaws
conduct root cause analysis and recommend strategic remediations
Contribute to and influence security policies, standards, and governance
Stay current with emerging threats, vulnerabilities, and security technologies, advising stakeholders on evolving risks and mitigations

Fulltime

Information Systems Security Officer Level 3

Provide support for a program, organization, system, or enclave's information as...

Location

United States , Annapolis Junction

Salary:

Not provided

Columbia Technology Partners

Expiration Date

Until further notice

Requirements

Ten (10) years of combined work-related experience in the fields of IT, cybersecurity or security authorization is required
Experience in at least two of the following areas is required: knowledge of current security tools, hardware/software security implementation
communication protocols
or encryption tools and techniques
Familiarity with commercial security products, security authorization techniques, security incident management, and PKI and authorization services
Bachelor's degree in Computer Science or a related field (e.g. General Engineering, Computer Engineering, Electrical Engineering, Systems Engineering, Mathematics, Computer Forensics, Cybersecurity, Information Technology, Information Assurance, Information Security, and Information Systems) is required
In lieu of a Bachelor's degree, four (4) additional years of work-related experience may be substituted
U.S. Citizenship is required for all applicants
All applicants and employees are subject to random drug testing in accordance with Executive Order 12564
Employment is contingent upon successful completion of a security background investigation and polygraph

Job Responsibility

Provide support for a program, organization, system, or enclave's information assurance program
Provide support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies
Maintain operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed
Assist with the management of security aspects of the information system and perform day-to-day security operations of the system
Evaluate security solutions to ensure they meet security requirements for processing classified information
Perform vulnerability/risk assessment analysis to support security authorization
Provide configuration management (CM) for information systems security software, hardware, and firmware
Manage changes to system and assess the security impact of those changes
Prepare and review documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs)
Support security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF)

What we offer

Medical: CTP offers 3 superior plans, bringing our employees both in-network and out-of-network options
Vision + Dental: Both free to you + paid in full by CTP
Retirement: 401k - 6% company contribution
PTO + Leave: Offering customizable leave plans
Jury Duty, Bereavement + Military Leave provided
Career Growth: Up to $10,000 provided for approved career-related learning, training, education, and/or tuition
Life and AD&D Insurance/Short-Term & Long-Term Disability: at zero cost to you
Profit Sharing Bonus: End of year cash gets added to your bottom-line
Referral Bonus Program: Our bonuses range from $7,000-$20,000

Fulltime

System Engineer - Information Systems Security Officer

Synergy ECP

Location:
United States , Annapolis Junction

Category:
IT - Administration

Contract Type:
Not provided

Salary:

Requirements:

Additional Information:

Job Posted:
February 18, 2026

Looking for more opportunities? Search for other job offers that match your skills and interests.

Similar Jobs for System Engineer - Information Systems Security Officer