Information System Security Engineer (ISSE)

Our Cybersecurity Team is seeking a highly skilled Information System Security Engineer (ISSE) to maintain and enhance the security posture of the National Military Command Center (NMCC) environment. This technical role is critical for the health and performance of our security infrastructure, requiring expertise in system administration, security tool management, and system hardening. A deep understanding of operating systems, security tools, and server infrastructure is essential.

As a dynamic systems integrator, SMS offers proven solutions in engineering, operations, cybersecurity, and digital transformation. With expertise in modernizing and optimizing legacy infrastructure and systems, ensuring operational efficiency, and designing, implementing, and managing secure environments, SMS supports business and mission goals with proficiency, quality, and integrity.

SMS has been serving the advanced information technology needs of the federal government since 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 45 years. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. For additional information on SMS, visit www.sms.com.

Submit your resume today!

The ISSE will be responsible for the following:
• Security Tool Infrastructure Management:
o Primary responsibility for the backend infrastructure, deployment, patching, tuning, and overall health of security tools, including Tenable Nessus, Trellix ePO (HBSS/ESS), and associated Windows and Red Hat Linux servers.
o Deep understanding of Windows and Linux operating systems, networking protocols, and security best practices.
Proactively monitor system performance, identify bottlenecks, and implement solutions to ensure optimal operation of security tools.
o Develop and maintain standard operating procedures (SOPs) for security tool administration.
• Vulnerability Management & System Hardening:
o Conduct technical security assessments of computing environments to identify points of vulnerability and recommend mitigation strategies.
o Implement Security Technical Implementation Guides (STIGs) on Windows and Red Hat Linux systems.
o Develop and implement security designs for new and existing network systems, ensuring hardware, operating systems, and software applications adequately address cybersecurity requirements.
• Remediation & Continuous Monitoring:
o Develop and implement approaches to mitigate IS and Network Environment vulnerabilities, recommending changes to network or network system components as needed.
• Security Architecture & Integration:
o Build IA into systems deployed to operational environments, validating and verifying system security requirements, and establishing system security designs for stand-alone systems. Support security planning, assessment, risk analysis, and risk management.
• Security Tool Troubleshooting & Support:
o Provide Tier 3 troubleshooting support for cybersecurity tools such as ACAS and HBSS/ESS.
• RMF Support & Documentation:
o Support the documentation of security control implementations and gathering of artifacts to support Risk Management Framework (RMF) and ICD 503 Security Accreditation.
o Assist with RMF related tasks as needed

• Active Top Secret-SCI security clearance.
  • Security+ certification.
  • 5+ years of hands-on experience administering and maintaining Tenable Nessus, Trellix ePO (HBSS/ESS), and related security tools in a production environment.
  • Proven ability to implement and validate STIGs on Windows and Red Hat Linux systems.
  • Expertise in troubleshooting and resolving issues related to Nessus, ePO, and associated infrastructure components.
  • Deep understanding of Windows and Linux operating systems, networking protocols, and security best practices.
  • 5+ years of experience in systems engineering, including design and architecture.
  • Demonstrated capability to identify security risks throughout information system network structures to include the Operating Systems, hardware, and various data transfer protocols.
  • Effective communication and presentation skills.
  • Strong planning, organizational, and time management skills.
  • Demonstrated initiative and ability to work independently.
  Preferred Qualifications (Desired Skills/Experience):
  • Ability to Run Evaluate-STIG scans on Windows and RHEL servers, as well as network devices
  • Knowledge of the process of obtaining licenses for all HBSS ePO’s and Tenable Security Centers.
  • Thorough understanding of Information Security principles and Risk Assessment techniques.

SMS is a dynamic systems integrator established in 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 47 years. Our ability to hire and retain quality people in a rapidly evolving IT market is proven through our employee retention rate averaging over 3 years. At SMS, we place a high value on quality of service, customer satisfaction, and best-of-breed policies and practices, resulting in CMMI Level 3 certification and ISO registrations including 9001:2015, 20000-1:2018, and ISO/IEC 27001:2013. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. 

SMS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.