Information System Security Engineer

Markon is building a talent pool of Information System Security Engineers (ISSEs) to support our IC client from Chantilly, VA. The ideal candidate will have in-depth knowledge and experience with secure systems engineering, firewall administration, NIST/FISMA/RMF standards, and

Perform Information System Security Engineering (ISSE) activities throughout the system development lifecycle in accordance with NIST SP 800-160, NRO RMF requirements, and applicable cybersecurity directives.
• Capture, refine, and document information protection requirements and ensure their integration into system acquisitions, engineering activities, and development efforts.
• Integrate security functional requirements into acquisition lifecycle phases, program milestones, engineering documentation, and system development processes.
• Assess cybersecurity risks, identify mitigation strategies, evaluate residual risk, and provide risk-based recommendations to stakeholders.
• Support Risk Management Framework (RMF) activities, including system categorization, control implementation, assessment support, authorization support, and continuous monitoring activities.
• Develop and maintain cybersecurity documentation supporting RMF and Assessment & Authorization (A&A) activities, including System Security Plans (SSPs), Security Assessment Reports (SARs), Plans of Action and Milestones (POA&Ms), risk assessments, and related artifacts.
• Evaluate proposed system changes, technology integrations, and engineering solutions to determine cybersecurity impacts and recommend appropriate security requirements.
• Support the design, development, implementation, integration, and sustainment of secure information systems and information assurance architectures.
• Analyze system and network architectures to identify security requirements and recommend protections that support confidentiality, integrity, availability, authentication, and non-repudiation.
• Recommend security architectures and engineering solutions that align with mission objectives, performance requirements, and cybersecurity best practices.
• Conduct technical assessments to identify vulnerabilities, threats, and risks affecting enterprise, cloud, network, and mission systems.
• Support vulnerability management activities, including vulnerability analysis, remediation planning, risk evaluation, and implementation of corrective actions.
• Assess and recommend security controls, common controls, and compensating controls to address identified security requirements and risks.
• Support the integration and implementation of Cross Domain Solutions (CDS) and coordinate with relevant stakeholders to ensure compliance with organizational processes and authorization requirements.
• Apply Information Assurance (IA) and cybersecurity principles in support of enterprise IT systems, communications systems, cloud environments, and mission networks.
• Support configuration management activities to maintain the security posture of hardware, software, operating systems, applications, and infrastructure components.
• Participate in system testing, integration testing, security validation activities, and engineering reviews to verify security requirements have been properly implemented.
• Collaborate with system engineers, program managers, security control assessors, authorizing officials, and other stakeholders to support system authorization and cybersecurity objectives.
• Research emerging cybersecurity threats, vulnerabilities, technologies, and countermeasures and provide recommendations to improve system security and resiliency.
• Participate in Integrated Product Teams (IPTs), engineering working groups, cybersecurity reviews, and technical forums to support mission and program objectives.
• Support resilient system design and cybersecurity best practices that enable systems to operate through disruption, degradation, or hostile activity.

Minimum Qualifications:

• An Active TS/SCI with a Counter Intelligence Poly (highly preferred from this client)
• Bachelor's degree in Computer Science, Cybersecurity, Information Assurance, Information Systems, Computer Engineering, or a related technical field.
• Minimum of three (3) years of experience supporting Information System Security Engineering (ISSE), cybersecurity engineering, information assurance, risk management, or related cybersecurity disciplines.
• Current Information Assurance Management (IAM) Level II or equivalent qualifying certification in accordance with contract requirements.
• Experience supporting cybersecurity activities throughout the system development lifecycle.
• Knowledge of Risk Management Framework (RMF), NIST cybersecurity guidance, and Assessment & Authorization (A&A) processes.
• Knowledge of cybersecurity principles, information assurance concepts, systems security engineering methodologies, and secure system design practices.
• Experience evaluating security requirements, implementing security controls, and supporting cybersecurity compliance efforts.

Desired Qualifications:

• Knowledge of ICD 503 and Intelligence Community authorization processes.
• Experience supporting NRO, Intelligence Community, Department of Defense, or National Security systems.
• Experience developing RMF authorization packages and supporting Authority to Operate (ATO) efforts.
• Experience supporting cloud security, virtualization technologies, or enterprise infrastructure environments.
• Experience supporting Windows, Linux, Unix, and macOS operating environments.
• Experience integrating Commercial Off-The-Shelf (COTS) and Government Off-The-Shelf (GOTS) technologies.
• Experience supporting Cross Domain Solutions (CDS), ICS/SCADA systems, or space system cybersecurity activities.

Eager to join a team where your skills are valued, your growth is nurtured, and your impact is profound? Look no further than Markon, a premier consulting firm deeply dedicated to advancing our nation's most critical missions.

At Markon, we don't just offer jobs - we offer opportunities for personal and professional transformation. Empowering our employees to lead, innovate, and excel, we foster an environment where new ideas are not just welcomed but celebrated. As a perennial Washington Post Top Workplace, we prioritize the well-being and success of our team members, ensuring they can bring their best selves to work.

Headquartered in Falls Church, Virginia, Markon has garnered national recognition for our unwavering dedication to excellence in serving the intelligence community, as well as federal civilian and defense agencies. Our growing reach extends across 17 states, 116 countries, and 5 continents, where our team of dynamic professionals collaborates to deliver unparalleled program and project management services.

Markon values people and the tremendous impact each individual can make - which is why we're consistently recognized as one of the best places to work in federal government consulting. Here, you can help solve the nation's most important challenges, surrounded by colleagues who help you grow, advance, and succeed. We are deeply dedicated to what matters - bringing out the best in each other to advance our clients' missions.

Join us and make a meaningful impact.

Markon is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, national origin, age, protected veteran status, or disability status. This job posting will remain open until the position is filled.

Benefits Offered: Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Flexible Spending Accounts, EAP, Training and Tuition Assistance, Paid Time Off, and Holidays