Information System Security Engineer

NAS

Woodbridge, VA

JOB DETAILS
SALARY
$150,000–$185,000 Per Year
JOB TYPE
Full-time
SKILLS
Amazon Web Services (AWS), Analysis Skills, Architectural Services, Artificial Intelligence (AI), Board Meeting, Cloud Computing, Communication Skills, Customer/Client Research, DMZ, Data Management, Defense Information Systems Agency (DISA), Design Evaluation, Documentation Review, Emerging Technology, Firewalls, Government, Hardware Virtualization, Information Systems Security Engineering (ISSE), Information Technology & Information Systems, Insurance Documentation, Internet Security, Leadership, Medical Equipment, Microsoft Windows Azure, Mobile Devices, National Security Agency (NSA), Onboarding, Presentation/Verbal Skills, Quality Assurance, Risk, Risk Management, Software Engineering, Systems Administration/Management, Systems Engineering, Technology Analysis, United States Department of Defense (DoD), Virtual Reality, Writing Skills
QUALIFICATIONS
RESPONSIBILITIES

.

LOCATION
Woodbridge, VA
POSTED
Today

I have direct hire onsite Senior Information System Security Engineer positions in Woodbridge Virginia. The hiring company provides tailored cybersecurity, artificial intelligence, systems engineering services to public and private sectors.

 

 

Benefits for employees: medical, dental, vision, 401K, flexible spending accounts, short-term and long-term disability, life insurance, vacation and personal leave and additional benefits.

 

 

PLEASE SEND SALARY REQUIREMENTS AND RESUME IN WORD IF INTERESTED. Minimum Active Top-Secret Clearance with SCI Eligible.

 

 

 

SR INFORMATION SYSTEM SECURITY ENGINEER-JOB DESCRIPTION

The ideal candidate will operate as a high-level technical advisor and intermediary, balancing structured cross-domain onboarding governance with dynamic, out-of-the-box risk engineering.

 

Rather than executing raw system configuration, this role acts as the principal gatekeeper and QA authority—evaluating complex customer requirements, conducting architectural document reviews for automated Cloud/Enterprise data pipelines, and engineering creative, defensible risk mitigation strategies for non-standard, emerging technologies across DTRA's enclaves.

 

Schedule: Full-Time Day Job
Years of Experience: 10+
Education: Bachelors Degree
Potential for Teleworking: No
Required Certifications (Baseline): Active DoD 8140/8570 IAT Level III (CISSP, CASP+ CE, CISA, or GCED)
 

Key Responsibilities

Mission Enablement Risk Engineering: Apply a comprehensive risk tradecraft equation—balancing Threat, Vulnerability, Policy, Mitigation, and Residual Risk. Confidently recommend alternative paths to "yes" for senior leadership, including structured Risk Acceptance Memorandums (RAM), Exceptions to Policy (ETP), or transferring risk entirely via reasonable accommodation (e.g., telework routing). 
 

Architectural & Enterprise CDS Gatekeeping: Serve as the principal technical reviewer for DTRA organizations onboarding onto pre-accredited Enterprise CDS (ECDS) and Raise the Bar (RTB) compliant Cloud CDS providers (e.g., AWS/Azure CDS). Evaluate customer design artifacts to ensure data pipelines "hit the mark" before board submission. 
 

Dynamic Information Technology Evaluation: Act as the primary advisor for evaluating non-standard, emerging technologies (e.g., virtual reality training platforms, mobile medical devices, standalone scanning configurations) against rigid DoD guidelines. Systematically dissect hardware/software interfaces to isolate threat vectors and design creative compensating controls. 
 

Board Representation & Intermediary Advocacy: Act as the formal technical advocate and bridge between DTRA development teams, external cloud providers (AWS/DISA), and formal authorizing panels. Represent the CDSE at Cross Domain Technical Advisory Board meetings to defend risk profiles and secure Approvals to Connect (ATC). 
 

Documentation Quality Assurance: Review, edit, and validate customer-authored Cross Domain packages to guarantee strict compliance with NSA "Raise the Bar" (RTB) standards before formal registry submission into the Sponsor Guidance System (SGS). 
 

Basic Qualifications

Process Knowledge: Minimum of 2 years of active experience navigating formal DoD connection pipelines (e.g., DSAWG via the Sponsor Guidance System, or corresponding Service-level authorizing tracks). Must speak fluent "DISA/Title 10" governance. 
 

Boundary Analysis Reflexes: Proven conceptual understanding of network traffic enforcement, data-diode behaviors, DMZ architecture, Next-Gen Firewalls (NGFW), or Cloud Access Points (CAP). Ability to read data flow diagrams and spot boundary flaws. 
 

Risk Management Tradecraft: Proven experience authoring custom waivers, STIG tailoring, or Risk Acceptance Memorandums for complex, non-compliant, or mission-critical hardware/software baselines. 


Communication: Exceptional verbal and written communication skills, with proven experience presenting complex risk profiles, technical trade-offs, and out-of-the-box mitigations directly to senior government leadership (GS-15/O-6 level).

 

About the Company

N

NAS