Information Systems Security Engineer II

The Information Systems Security Engineer II will have responsibility for leading TCOM through various cybersecurity/hardening efforts on multiple programs. They will play a vital role in enabling security solutions by utilizing systems engineering and systems security engineering principles. It will require the ISSE II to perform a software composition analysis and identify vulnerabilities in a system and provide software and hardware solutions. This role supports active TCOM programs under the Systems Engineering department. 

Working Procedure:

• Support the program related cyber engineering tasks and associated CDRLS on programs requiring cyber engineering.
• Define information system security requirements and functionality.
• Design system architectures and designs.
• Assess the effectiveness of security solutions against present and projected threats.
• Produce formal and informal reports, briefings, and direct input to the customer regarding security and functionality requirements, system architecture and security designs.
• Conduct security engineering/hardening of the latest operating systems, tailoring them for use in the specific mission area.
• Review requests for security relevant changes on the mission infrastructures, ensuring risk is adequately mitigated.
• Work with system owners to accredit/re-accredit critical mission systems.
• Verify stability, interoperability, portability, security, or scalability of system architecture.
• Collaborate with engineers or software developers to select appropriate design solutions or ensure the compatibility of system components.
• Perform technical security assessments of computing environments to identify points of vulnerability, non-compliance, with established Information Assurance (IA) standards and regulations and recommend mitigation strategies.  
• Review Plans of Actions and Milestones (POA&Ms) to ensure weaknesses are identified, effective/acceptable mitigation strategies are planned, and timelines are acceptable and on track.
• Contribute to the security planning, assessment, risk analysis, risk management, certification and awareness of activities for system and networking operations.
• Perform other duties and responsibilities as assigned.

 

Education Requirements:  BS or BA in Computer Science, Information Assurance, Computer Engineering, or related discipline. DoD 8570/8140 compliant certifications.  

Experience Requirements:  A minimum of 5 years of experience. Candidates must have practical, working knowledge of IT audits, conducting security assessments and authorizations, familiarity with the use and operation of security tools, and be able to enforce the design and implementation of trusted relations among external systems and architectures.

In compliance with state and local laws, the salary range for this role is $130k-$165k. The range provided is a general guideline and good faith estimate representative of all experience levels but is not a guarantee of compensation or salary. TCOM considers several factors when extending an offer including, but not limited to, the scope and responsibilities of the position, a candidate’s experience, education/training, key skills, internal equity, and current market conditions. Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results.