Information Systems Security Engineer, II

ISSE Job Opportunity

Parsons is looking for an amazingly talented ISSE to join our team! Your role will include preparing and overseeing the implementation of policies and procedures to maintain continuous security for the portfolio. You will be responsible for the overall cybersecurity of your assigned areas. Utilizing your knowledge of IT security principles, concepts, and methods, including emerging technologies and products, you will recommend appropriate technical strategies to address complex and persistent IT security challenges.

All work will be performed on-site at the customer's facility in Ft. Belvoir, VA.

What You'll Be Doing:

• Ensure compliance with applicable security standards, such as NIST SP 800-53, and other federal regulations (such as FISMA, NIST 800-171, JSIG, and DFARS).
• Manage the program of record (User Activity and Monitoring) and ensure compliance with applicable federal regulations.
• Coordinate with leadership to ensure security practices align with organizational objectives by developing and enforcing security policies, standards, and procedures.
• Serve as a principal advisor on all matters, technical and otherwise, involving the security of information systems under his/her purview.
• Support security use case development in Splunk Enterprise Security (ES) for security incident response analysts.
• Validate and verify system security requirements.
• Develop and review system security design.
• Participate in system planning, development, and deployment activities to ensure adherence to security standards and requirements.
• Recommend system-level solutions to resolve security requirements.
• Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures, acting as an advisor the Government ISSM on ATO extensions, body of evidence reviews.
• Develop cybersecurity documentation in support of customer Risk Management Framework (RMF) process; in accordance with NIST SP 800-37 Rev 2.
• Identify, quantify, and evaluate the costs/benefits of security functions and considerations to inform analysis of alternatives, engineering trade-offs, and risk treatment decisions.

What Required Skills You'll Bring:

• Active TS/SCI clearance.
• B.A./B.S. in Information Security System Engineering, Information Assurance, Computer Science, or related discipline; OR 7+ years of equivalent IT experience.
• 5 years' experience as ISSE or relatable responsibilities (Work experience may be adjusted for highly specialized knowledge or uniquely applicable experience).
• 2+ years of hands-on experience with Splunk, network security and system security, supporting security information and event management tools (SIEMs).
• Direct experience reviewing and developing RMF assessment and authorization documentation (e.g., System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POAMs)).
• Familiarity with Systems Security Engineering (SSE) documentation (e.g., Cybersecurity Strategies, Information Support Plans, Program Protection Plans (PPPs)).
• DoD 8570 IAT Level II certification(s) (SSCP, Security+, CCNA-Security, or GSEC certification).
• Experience working with eMass.
• Experience with, or interest in, learning, deploying, and maintaining Splunk SOAR.
• Good verbal and written communication skills.

What Desired Skills You'll Bring:

• B.A./B.S. in Cyber Security.
• DoD 8570 IAT-III certification.
• Knowledge of Cloud (i.e., AWS C2S, Commercial, and GovCloud) security planning, design, and operations.
• Knowledge of Cloud C2E initiative.
• Experience in a Security Operations Center (SOC) environment.
• Accredited in one (or more) Premium Splunk Applications (ES, ITSI, UBA, SOAR, Cloud).
• Splunk certifications (e.g., Core, IT Service Intelligence (ITSI), Certified Architect/Consultant, etc.).
• Experience in engineering cross-domain solutions.

Security Clearance Requirement: An active Top Secret SCI security clearance is required for this position.