ISSE (Engineer Info Assurance 3) - 26256

ISSE to Support Huntsville Engineering ATO Operations

HII Mission Technologies has been selected as one of Military.com's "Top 25 Employers for Veterans in 2024" and we are a Forbes Best Large Employer for 2023!!!

Are you ready to take your career to the next level? We are seeking talented and motivated ISSEs to join our team!

Position Summary:

HII - Mission Technologies is seeking a skilled Information Systems Security Engineer (ISSE) to join our dynamic engineering team supporting the U.S. Navy's Authority to Operate (ATO) process. As part of Huntington Ingalls Industries' (HII) broader mission to deliver critical solutions to our nation's defense, you will play a pivotal role in ensuring naval information systems meet rigorous security requirements. In this position, you will collaborate with cross-functional teams to assess, document, and implement security controls that protect sensitive naval systems and data, while navigating complex DoD cybersecurity frameworks including RMF and NIST standards. Your expertise will directly contribute to maintaining the operational readiness of essential Navy platforms and systems.

This role requires on site work in Huntsville, AL and cannot be done remotely. 
 

Come support our work with U.S. Navy's Authority to Operate (ATO) and join a world class team of groundbreaking scientists and engineers!

Details below!

What you will do

• Oversees and manages information security program implementation within the organization or other area of responsibility. Manages strategy, personnel, infrastructure, policy enforcement, emergency planning, security awareness, and/or other resources. Acquire and manage the necessary resources, including leadership support, financial resources, and key security personnel, to support information technology (IT) security goals, and reduce overall organizational risk.
• Develop and maintain comprehensive RMF technical artifacts including security assessment reports, system security plans, network diagrams, and security control implementation details using authorized A&A tools to support Navy ATO processes.
• Serve as a liaison between technical teams, security personnel, and Navy stakeholders to coordinate all aspects of RMF Assessment & Authorization activities, ensuring alignment with cyber engineering requirements and system lifecycle management processes.
• Support critical testing activities including T&E, DT&E, and OT&E by providing security control validation, vulnerability assessment expertise, and documentation of test results to verify system compliance with security requirements.
• Apply cybersecurity expertise across the full system lifecycle, implementing RMF processes, managing change requests, conducting annual security control reviews, addressing IAVMs, supporting FISMA reporting, and performing contingency testing to maintain system authorization.
• Implement cost-effective, risk-balanced security controls that protect the confidentiality, integrity, and availability of Navy information systems while meeting mission objectives and operational requirements.
• Provide dedicated support for PTT systems' authorization and system level continuous monitoring processes, ensuring ongoing compliance with security requirements and timely remediation of identified vulnerabilities.
• Respond to security incidents by identifying, reporting, and resolving violations; developing secure isolation solutions; and ensuring systems recover securely with full functionality to minimize operational impact.
• Develop and review critical documentation including requirements proposals, CONOPS, ECPs, systems engineering plans, architectural design papers, and risk analyses to support secure system implementation and authorization.
• Deliver expert security recommendations to U.S. Navy representatives based on technical analysis, compliance requirements, and emerging threats to enhance the security posture of naval systems.
• Support the ISSM and facility director in implementing and managing comprehensive cybersecurity policies that align with Navy and DoD requirements while addressing system-specific security needs.
• Create and maintain documentation for system security operations, maintenance procedures, and problem resolution to ensure consistent security practices and facilitate knowledge transfer.

What we are looking for: Minimum Qualifications

• 5 years relevant experience with Bachelors in related field; 3 years relevant experience with Masters in related field; 0 years experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 9 years relevant experience.
• This position is an IAM Level II in Cyber Security Workforce.
• Bachelor Degree from accredited University
• CompTIA Security + (CE)
• A current USG issued “SECRET” security clearance
• Strong understanding and experience with the Risk Management Framework, JSIG, RMF Bodies of Evidence
• Excellent oral and written communication skills, collaboration skills, and experience in presenting cybersecurity issues to all levels of management, as well as non-technical staff
• Strong work ethic, demonstrated self-starter with the ability to work in a fast paced, team-oriented environment

Preferred Requirements

• CNSSI 4012 certificate or ADQ GA7
• Successful completion of at least one of the following military training courses: NEC 2779 (CIN: A-531-0009) or 3372 or CIN W-3B-1500 (EKMS Manager) or A-4C-1340 (KMI) (or DOD Service equivalent)
• A GSLC or CISSP or CISM or CAP or or CASP is Strongly preferred.

Physical Requirements

• May require working in an office, industrial, shipboard, or laboratory environment. Capable of climbing ladders and tolerating confined spaces and extreme temperature variances.