Information Systems Security Officer/Engineer
Automate your job search with Sonara.
Submit 10x as many applications with less effort than one manual application.1
Reclaim your time by letting our AI handle the grunt work of job searching.
We continuously scan millions of openings to find your top matches.

Overview
Job Description
- Perform system decomposition and CYBERSAFE assessments to identify mission-critical components and support Facility Related Control Systems (FRCS) cybersecurity requirements.
- Execute the full RMF lifecycle, including development, review, and maintenance of authorization packages supporting initial ATOs, continuous monitoring, and reauthorization efforts.
- Develop and maintain RMF artifacts, including system inventories, network diagrams, categorization documentation, security plans, assessment plans, continuous monitoring plans, vulnerability reports, and STIG/SRG compliance documentation.
- Manage RMF activities within eMASS, including artifact uploads, control implementation, vulnerability mapping, test results, POA&M management, and authorization workflows.
- Implement and validate NIST 800-53 security controls through vulnerability scanning, patching, STIG/SRG compliance, and remediation of IT infrastructure and IP-based control systems.
- Coordinate authorization boundary changes, on-site validation activities, and Operational Technology Design Authority (OTDA) change requests.
- Collaborate with cross-functional teams and stakeholders to support nationwide cybersecurity assessments, remediation efforts, and provide regular RMF status updates to program leadership.
- Active Secret clearance
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field, and 3+ years of experience supporting cybersecurity, RMF, or information assurance in military, federal, or government contractor environments.
- Experience supporting the Risk Management Framework, including eMASS, RMF artifacts, and authorization activities, as an ISSE, ISSO, or similar cybersecurity role.
- Proficiency implementing DISA STIGs/SRGs and conducting ACAS vulnerability scanning and remediation.
- Familiarity with NAVFAC environments and/or operational technology (OT) or industrial control systems (ICS), including industrial protocols, HVAC control systems, and utility/energy management technologies.
TDI does business with the federal government, which restricts employment to individuals who are either US citizens or lawful permanent residents of the United States.
“TDI is an Equal Opportunity Employer. Employment decisions are made based on individual qualifications, merit, and business needs. We do not discriminate in employment opportunities or practices based on race, color, religion, sex, or national origin, in accordance with applicable federal laws.”
Automate your job search with Sonara.
Submit 10x as many applications with less effort than one manual application.
