RemoteLeaf Logo
Log in Sign up

Information Systems Security Engineer (ISSE)/ISSO

1 month ago
United States
Full-time
Senior
Security Engineer
DevOps and Infrastructure
AWS CloudFormation DevSecOps EC2 Encryption JSON PowerShell Python SIEM Splunk
Apply Now
CWS

CWS

CWS Computer World Services Corp. is a leading IT service provider specializing in digital transformation and high-end IT services for the federal market, offering innovative solutions and quality services to government clients worldwide.

IT Services
251-1K
Founded 1990
View All Jobs

Description

  • Design, develop, engineer, and implement security solutions to meet MLS requirements and OFR needs.
  • Perform complex risk analyses including risk assessments, SIEM-based threat detection and monitoring, and secure code review throughout the development lifecycle.
  • Establish, validate, and continuously monitor information assurance and security controls using vulnerability scan results, SIEM alert correlation, and code analysis findings.
  • Manage vulnerability management activities across the enterprise using tools such as Nexpose, Rapid7, and Qualys, and implement container scanning (e.g., AWS Clair).
  • Perform application security testing with Fortify WebInspect and conduct source code reviews with Veracode to identify and remediate application and code vulnerabilities.
  • Create custom Splunk queries and generate detailed reports to support security monitoring, incident analysis, and compliance reporting.
  • Track, monitor, and report on Plans of Action and Milestones (POA&Ms) and drive remediation of identified findings and control deficiencies to closure.
  • Develop and implement policies and controls for least-privilege access, network segmentation, IAM integration with network security, and continuous validation of network communications.
  • Serve as principal liaison between OFR and supporting personnel (e.g., Security Controls Assessors, ISSOs, Continuous Monitoring) and coordinate third-party risk assessments and IT audits.
  • Review and recommend detection rules, incident response playbooks, and perform regular audits of security controls and access management systems.

Requirements

  • Experience using the NIST Risk Management Framework (RMF) to assess information security controls and identify control gaps.
  • Knowledge of and ability to ensure compliance with NIST Special Publications, FIPS, FedRAMP, and other federal regulations and policies.
  • Experience preparing Security Authorization Packages and associated documentation (Authorization Official out-briefs, Security Authorization recommendations/memorandums).
  • Hands-on experience managing a vulnerability management program and conducting vulnerability assessments, continuous monitoring, and security control assessments.
  • Familiarity with vulnerability and application security tools and platforms such as Nexpose, Rapid7, Qualys, AWS Clair, Fortify WebInspect, Veracode, and Splunk.
  • Working knowledge of AWS services including EC2, VPC, S3, RDS, CloudFormation, Systems Manager, CloudWatch, and Security Hub.
  • Familiarity with security frameworks and methodologies such as NIST SP 800-61, MITRE ATT&CK, SANS Security Controls, OWASP Top 10, attack lifecycle, and kill chain.
  • Understanding of networking technologies and concepts (routing, switching, network segmentation) and experience implementing network security controls.
  • Strong written and verbal communication skills with the ability to communicate with all levels up to executive-level management and external customers/vendors.
  • Familiarity with scripting or automation basics (Python, JSON, and/or PowerShell).
  • Certifications: CISSP preferred; preference also given for GIAC (CCE, CCFE, CEH, CPT, CREA, GCFE, GCFA, GCIH, GCIA), Splunk Core, OSCP, SANS Security 500 Series, or equivalent industry certifications.
  • Must be a U.S. citizen and able to obtain/hold Public Trust High (Tier 4/BI) risk-level clearance.
  • Ability to work effectively under pressure; prior experience in high-pressure environments (e.g., emergency responder, firefighter) is a plus.

Benefits

  • $145,000 - $155,000 per year (salary range; final offer based on candidate’s knowledge, skills, abilities, experience, and internal parity).
  • D.C. location or remote work option.
  • Affirmative action / equal employment opportunity employer and an inclusive workplace.
  • Reasonable accommodations provided for individuals with disabilities (contact hr@cwsc.com).
  • Transparent pay banding and consideration for internal employees and qualified applicants.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Databricks

Head of Corporate Engineering

Databricks 1K-5K IT Services

Databricks is hiring a Head of Corporate Engineering to lead global enterprise engineering and operations, building and scaling secure cloud infrastructure, identity and access, endpoints, collaboration and engineering tools to enable developer velocity and enterprise compliance.

United States Full-time Lead Infrastructure Engineer Security Engineer
$265k-$364k
Agile AWS Azure Confluence GCP GitHub JIRA macOS
1 month ago
ClickHouse

Incident Response Security Engineer

ClickHouse 51-250 IT Services

Security practitioner role at ClickHouse focused on scaling incident detection and response capabilities, driving adoption of security processes and tooling, and protecting the company’s cloud and product infrastructure for customer-facing services.

United Kingdom Full-time Senior Security Engineer
AWS Azure ClickHouse GCP Penetration Testing Python SIEM
1 month ago
Samsara

Senior Security Engineer - Vulnerability Management

Samsara 1K-5K IT Services

Senior Security Engineer at Samsara responsible for deploying, operating, and improving the company’s Vulnerability Management program to reduce software vulnerabilities and protect customer-facing infrastructure.

United States Full-time Senior Security Engineer
$158k-$238k
AWS CI/CD DevSecOps Go Python Serverless Terraform
1 month ago
ARETUM

Junior DevSecOps Engineer - Contingent

ARETUM Construction & Engineering

Junior DevSecOps Engineer at Aretum supporting a federal client to operate, automate, and secure cloud-based systems and CI/CD pipelines to enable reliable, compliant deployments.

United States Full-time Junior DevOps Engineer Security Engineer
Agile Ansible AWS AWS CDK Azure Chef CI/CD Docker Encryption Git GitLab CI Grafana JIRA Kubernetes Linux LXC Prometheus Puppet SaltStack Scrum Serverless Terraform
1 month ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers