Solidus is an Equal Opportunity Employer (Minorities/Females/Disabled/Veterans)

Information Systems Security Engineer
Job Category
Clearance LevelAble to Obtain Top Secret
LocationFlorida, Eglin AFB
Req Code17:LDOS-SEIC-002
Job Description
Solidus is searching for an Information Systems Security Engineer to provide Cybersecurity engineering support to the Airspace Mission Planning Division, Eglin AFB.  The Information Systems Security Engineer’s principal responsibility is successful Security Certification & Accreditation (C&A) of Mission Planning software applications, within planned cost and schedule.  These Mission Planning software applications are in use today by Air Force and Navy aviation mission planners, and operate on various DoD networks, closed networks and stand-alone systems.    Location can be at facilities at Lexington MA, or Eglin AFB, FL.

- Researching, developing, implementing, testing, and reviewing hardware/software information security requirements (IAW DoD/NIST RMF) to protect information and prevent unauthorized access. In this role, the ISSE will direct the contracting team on security measures, explain potential threats, implement security measures and monitor applications in order to meet or exceed all DoD/NIST RMF requirements, resulting in faster and more accurate software releases.
- Support the government program office’s Information Assurance team with Authorization to Operate (ATO) and Authority to Connect (ATC) certifications, required for software releases.
- Hardening of Operating Systems, applications, and network infrastructure using Department of Defense Security Requirement Guides (SRGs), Security Technical Implementation Guides (STIGs), Defense Security Service Office of the Designated Approving Authority (DSS ODAA) Baseline Technical Security Configurations, and Information Assurance Vulnerability Alerts (IAVA)
- Developing and maintaining system-specific Security Controls Test Matrix (SCTM), Risk Assessment Report, Plan of Action and Milestones (POA&M), System Security Plans (SSP), Application Security and Development Checklists, and other artifacts supporting software certification and accreditation in accordance with RMF and JSIG.
- Running vulnerability scans for applications using various tools such as HP Fortify; working with software engineers to analyze the report; and running vulnerability scans for operating systems and network infrastructure using Nessus and/or ACAS.
- Working closely with software engineers supporting and troubleshooting the deployment of our software on government-provided infrastructure.
- Working closely with the Chief Engineer to establish a system security engineering (SSE) process to plan, organize and manage efforts to achieve maximum system security and survivability.
- Understanding components of, and support the development of, Security Assessment Reports.
- Working with self-signed certificates and DoD PKI.
- Working with Windows OS, SELinux, puppet, iptables, and cryptographic modules.
- Contribute to Program Protection planning, Anti-tamper planning and identification of Critical Program Information (CPI).

- Active Secret Clearance and the ability to obtain a Top Secret Clearance
- Bachelor's degree in Computer Science, Information Security, Electrical Engineering or a related scientific /technical discipline
- 8+ years of Security Engineering or related experience.  
- Certified Information Systems Security Professional (CISSP) designation.
- Understanding of DoD 8510, NIST 800.53 Risk Management Framework, and CNSSI 1253
- Ability to manage and provide cybersecurity products to multiple project teams executing concurrently, in accordance with each project’s schedule.  

Additionally Desired:
- Advanced degree preferred
- Experience in leading C&A processes in accordance with DoD policy, standards & guidelines. 
- Experience with the enterprise Mission Assurance Support Service (eMASS).
- Technical knowledge of computer networking and computer security protocols, and prior hands-on implementation of network and software security controls.

Applicants selected must meet eligibility requirements for access to classified information. U.S. Citizenship may be required. Solidus is an Equal Opportunity Employer and participates in E-Verify. NOTICE OF AFFIRMATIVE ACTION PLAN FOR INDIVIDUALS WITH DISABILITIES, DISABLED VETERANS AND OTHER PROTECTED VETERANS. It is the policy of this Company to seek and employ qualified individuals at all locations and facilities, and to provide equal employment opportunities for all applicants and employees in recruiting, hiring, placement, training, compensation, insurance, benefits, promotion, transfer, and termination. To achieve this, we are dedicated to taking affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, and other protected veterans. The objective in adopting the Affirmative Action Programs is to place qualified individuals with disabilities, disabled veterans and other protected veterans in all job classifications. These Affirmative Action Programs are available for inspection by any applicant or employee by contacting the Company's EEO Coordinator, in the Human Resources office, Monday through Friday, 8am to 5pm