Information System Security Engineer

Job Summary

This role supports information system security engineering for complex C5ISR environments, ensuring systems meet cybersecurity, compliance, and risk management requirements throughout their lifecycle. The position focuses on implementing and assessing security controls, supporting authorization activities, and guiding secure system design and operations.

Key Responsibilities

• Determine and document system security control requirements

• Implement and maintain security controls within compliance and authorization tools

• Conduct annual security control reviews through testing, examination, and interviews

• Assess the effectiveness of cybersecurity measures across systems

• Analyze threats and vulnerabilities to develop system security risk profiles

• Identify and guide remediation of technical security issues during system testing and deployment

• Evaluate and recommend cybersecurity products that meet organizational validation requirements

• Collaborate with stakeholders to define functional needs, develop secure architectures, and communicate security best practices

• Document network and system security configurations for existing and emerging systems

• Develop and document best practices for securing networks, applications, servers, databases, and system components

• Perform cybersecurity hardening and continuous monitoring, including STIGs, patching, and vulnerability scanning

• Manage security-related configurations based on operational requirements

• Integrate cybersecurity vulnerability mitigations into system designs

• Provide implementation guidance to customers for secure system deployment

• Support Risk Management Framework (RMF) activities and associated documentation

• Assist with security certification, test, and evaluation activities

• Ensure all security design and development activities are thoroughly documented

Required Skills & Qualifications

• Completion of a CNSSI 4014 (Information Systems Security Officer–qualified) course or equivalent

• CompTIA Security+ certification

• Experience with Marine Corps information security programs, authorization procedures, and compliance requirements

• Active Secret security clearance

Preferred Qualifications

• Bachelors degree in Cybersecurity, Information Technology, or a related field

• Certified Authorization Professional (CAP) certification

• GIAC Security Leadership Certification (GSLC)

• Completion of CID M09BNJ1 Cybersecurity Technician course

• Completion of CNSSI 4013 (System Administrators–qualified) course

• NDU Chief Information Security Officer (CISO) certificate