We are seeking an experienced Information Systems Security Engineer (ISSE) to lead Assessment and Authorization (A&A) and Continuous Monitoring (ConMon) activities, ensuring compliance with Risk Management Framework (RMF) requirements across multi-level classification environments with diverse technologies.

Key Responsibilities

The ISSE will play a critical role in managing and coordinating system security actions by defining, tracking and executing RMF actions in accordance with ICD 503 (NIST 800-53) to obtain and sustain system authorizations. The candidate must demonstrate a thorough understanding of security policies, risk management, and vulnerability assessment tools.

Responsibilities include:

• Assessment & Authorization (A&A):
  • Oversee team preparation and submission of Interim Authorization to Test (IATT) and Authority to Operate (ATO) requests as well as directly conducting same
  • Ensure development, accuracy, maintenance, and coordination of all required Body of Evidence (BoE) documentation for assigned and team system assets
  • Collaborate across Technical Services and Security Services teams, as well as customer agency stakeholders, to ensure compliance
  • Track and oversee workflow for lien remediation/resolution activities and entering tracking tool updates
  • Evaluate system change requests and assessing both system and organizational risks associated with modifications
• Continuous Monitoring (ConMon):
  • Conduct, oversee and track execution of ConMon activities within established timelines, including BoE collection and tracking tool updates
  • Conduct and oversee recurring reviews of system state and security posture to ensure that systems meet security requirements and are compliant with defined security policies and procedures.
  • Provide recommendations for security control implementation and identifying necessary countermeasures or mitigating controls
  • Respond to and oversee / coordinate responses to queries and requests for security information and reports
• Incident Response & Security Oversight:
  • Support and coordinate investigations of security incidents and reporting findings as necessary
  • Guide and coordinate the communication, implementation and enforcement of security policies and plans for data, applications, hardware, and telecommunications systems
  • Advise stakeholders on information assurance standards, dependencies, and emerging security technologies
  • Oversee ongoing engagement with Enterprise Security Services tools (e.g., Trellix, ACAS, Splunk) to track and remediate vulnerabilities and compliance deficiencies

The ISSE responsibilities also include the following activities:

• Drive continuous improvement of ISSE capabilities to enhance performance and compliance levels over time.
• Lead and contribute direct support to various processes, reporting, and planning for both internal and customer-facing activities.
• Ensure consistency of implementation for consistent RMF/A&A asset management and compliance.
• Create and implement quality management through best practices and efficiencies, enabling the ability to manage workflows, define priority areas, and view trends.
• Participates in special projects as required.

Required Qualifications

• Education: Bachelors degree in Information Systems, Cybersecurity, or a related field (or equivalent experience)
• Experience: Minimum of 4 years of applicable experience in cybersecurity, RMF compliance, or system security engineering as well as a minimum of 4 years of working in the Intelligence Community and Information Technology sector
• Certifications: Required: DoD 8570 IAM Level II compliant certification required, Security + CE
• Clearance: TS/SCI with Polygraph
• Preferred Qualifications & Skills:
  • Masters degree in Information Systems, Cybersecurity, or a related field (or equivalent experience)

Why Join GDIT?

At GDIT, we foster professional growth and provide opportunities to advance your career in a mission-critical environment. Our benefits include:

• 401(k) with company match
• Comprehensive health and wellness programs
• Dedicated internal mobility team to support career advancement
• Paid education and professional certification opportunities
• Access to cutting-edge technologies and innovative projects
• Paid vacation and holidays to support work-life balance

Join us at GDIT and contribute to securing the future of national security.

OWN YOUR OPPORTUNITY
Explore a career in cyber at GDIT and youll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.