Position: Information Systems Security Engineer (ISSE) Location: Fort Meade, MD Department: Defense Information Systems Agency (DISA) Employment Type: Full-timeOverview: We are seeking a skilled Information Systems Security Engineer (ISSE) to join our technical team supporting a mission-critical program for the Defense Information Systems Agency (DISA). This role requires both technical expertise and the ability to document and maintain compliance with DoD cybersecurity standards. The ISSE will work closely with other ISSOs, system administrators, and DevSecOps teams to design, implement, and validate security controls across a secure Kubernetes environment, ensuring systems meet the highest standards for confidentiality, integrity, and availability.This position offers the opportunity to play a critical role in IT Modernization and Transformation, working with hardened Docker images, Kubernetes, and CI/CD pipelines while maintaining rigorous documentation in compliance with DoD standards.Key Responsibilities
- System Security Engineering: Design, implement, and validate technical security controls for Kubernetes-based systems, cloud platforms, and RHEL environments.
- Compliance and Documentation:
- Develop and maintain System Security Plans (SSPs), Risk Assessment Reports (RARs), and other artifacts required for Authority to Operate (ATO).
- Ensure systems comply with DoD standards, including RMF, STIGs, and NIST 800-53.
- DevSecOps Integration:
- Collaborate with the DevSecOps team to integrate security tools and practices into CI/CD pipelines.
- Conduct vulnerability scanning, static/dynamic code analysis, and container security checks.
- Monitoring and Hardening:
- Evaluate monitoring solutions for system and application security using tools such as Prometheus, Kibana, and ELK Stack.
- Incident Response and Risk Mitigation:
- Assist with incident response activities, including forensic analysis and root cause determination.
- Identify and mitigate system vulnerabilities throughout the system lifecycle.
- Collaboration and Training:
- Work with ISSOs, system administrators, and developers to ensure secure system configurations.
- Provide training and guidance on secure coding, DevSecOps practices, and system hardening.
Required Qualifications:Education:
- Bachelor's degree in Computer Science, Cybersecurity, or a related field (or 8+ years of relevant experience in lieu of a degree).
Experience:
- 4+ years in system security engineering or related cybersecurity roles.
- Experience implementing and managing secure Kubernetes environments, including patch management and lifecycle upgrades.
- Proficiency in securing multi-cloud environments (AWS, Azure, or hybrid).
- Experience with Terraform and Ansible for infrastructure automation.
- Strong scripting skills (Bash, Python, or Perl) for automation and security tool integration.
- Hands-on experience with containerization (Docker) and securing container workloads in Kubernetes.
- Familiarity with vulnerability scanning and compliance tools (e.g., Nessus, OpenSCAP).
Certifications:
- At least one certification meeting DoD 8570/8140 requirements (e.g., CISSP, CAP, Security+, CISM).
Preferred Technical Skills
- Experience with VMware-based Kubernetes environments (vSphere/vCenter).
- Knowledge of peer-to-peer distributed storage networks and application messaging frameworks.
- Familiarity with PKI, IPSEC, or VPN-secured environments.
- Experience implementing log aggregation and monitoring using ELK Stack.
- Proficiency in using secure Infrastructure as Code (IaC) and CI/CD tools like Jenkins and GitLab.
Additional Requirements:
- Active Secret Clearance and ability to meet DoD security standards.
- U.S. Citizenship is required.
- Ability to work onsite at Fort Meade, MD.
Why Join Us:
- Professional Growth: We support continuous learning and professional development through comprehensive training and certifications.
- Innovation at Work: Engage with cutting-edge technologies in a project that pushes technological boundaries. If you like a challenge that will grow your skillset and expose you to various tools that you will be expected to master, this is a good fit for you.
- Benefits and Security: Enjoy a robust benefits package including health, dental, and vision insurance, a competitive retirement plan, and the stability of government contract roles.
Trillion is an equal opportunity employer. Applicants are considered for positions without regard to race, religion, gender, native origin, age, disability, or any other category protected by applicable federal, state, or local law.