Information Systems Security Engineer (ISSE)

Eager to join a team where your skills are valued, your growth is nurtured, and your impact is profound? Look no further than Markon, a premier consulting firm deeply dedicated to advancing our nation's most critical missions.

 

At Markon, we don't just offer jobs – we offer opportunities for personal and professional transformation. Empowering our employees to lead, innovate, and excel, we foster an environment where new ideas are not just welcomed but celebrated. As a perennial Washington Post Top Workplace, we prioritize the well-being and success of our team members, ensuring they can bring their best selves to work.

 

Headquartered in Falls Church, Virginia, Markon has garnered national recognition for our unwavering dedication to excellence in serving the intelligence community, as well as federal civilian and defense agencies. Our growing reach extends across 17 states, 116 countries, and 5 continents, where our team of dynamic professionals collaborates to deliver unparalleled program and project management services.

 

Markon values people and the tremendous impact each individual can make – which is why we’re consistently recognized as one of the best places to work in federal government consulting. Here, you can help solve the nation’s most important challenges, surrounded by colleagues who help you grow, advance, and succeed. We are deeply dedicated to what matters – bringing out the best in each other to advance our clients’ missions.

Join us and make a meaningful impact.

 

Markon is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

Markon’s partner company is seeking an experienced Information Systems Security Engineer to support an Intelligence customer 

• SME level knowledge of Risk Management Framework and manage [potential] systems through the full Lifecyle of RMF
• Communicate system complexities with Assessors and ISSMs
• Prepares security test and evaluation plans.
• Provides certification and accreditation support in the development of security and contingency plans and conducts complex risk and vulnerability assessments.
• Analyzes policies and procedures against Federal laws and regulations and provides recommendations for closing gaps.
• Recommends system enhancements to improve security deficiencies. Develops, tests, and integrates computer and network security tools.
• Secures system configurations and installs security tools, scans systems to determine compliancy and report results and evaluates products and various aspects of system administration.
• Conducts security program audits and develops solutions to lessen identified risks.
• Provides information assurance support for the development and implementation of security architectures to meet new and evolving security requirements.
• Performs vulnerability assessments including development of risk mitigation strategies.
• Prepares systems Assessment and Authorization (A&A) documents and procedures. Interface with other IA team members, other security disciplines (industrial security, physical security, special programs security, etc.), program personnel, and Government security representatives.
• Initiate vulnerability and compliance scan
• Manage rick/threat mitigation/remediation
• Tailor systems A&A documents to unique environments and requirements
• Successfully work through POAMs with Developers, Engineers, and various groups
• Conduct the full spectrum system Continuous Monitoring
• Experienced user of Splunk, Rapid7, and other monitoring and auditing systems or software
• Conduct various roles and responsibilities in Cloud computing environment
• Ensure the system security documentation, is developed, maintained, reviewed, and updated on a continuous basis

• Bachelors and 8+ years of experience OR Masters and 6+ years of experience OR PhD and 3+ years of experience; an additional four years of experience may be considered in lieu of degree
• Risk Management Framework and Assessment and Authorization processes and related policies
• Exceptional written and verbal communication skills
• Familiarity with cloud computing and related security concepts
• Working knowledge of digital communications and related IT communications technologies
• Direct experience with patch management, continuous monitoring, and vulnerability scanning/remediation activities
• Active TS/SCI FS Polygraph Security clearance 

USD $165,000.00 - USD $195,000.00 /Yr.

The Markon pay range for this position is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.