Information Systems Security Engineer (ISSE) at Softworld Inc
Concord, MA
About the Job
Job Title: Information Systems Security Engineer (ISSE)
Location: Virginia Road VA 01742
Onsite Requirements:
- Disa Stigs
- Ato's
- Acas/Vulnerability Scanning
Job Responsibilities:
- The ISSE shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established cybersecurity standards and regulations and recommended mitigation strategies.
This includes: - Responsible for building, deploying and Patching HBSS Windows and ACAS RedHat Linux 7.9 and 8 servers.
- Responsible for building, maintaining, and patching all ePO, Security Center, and Nessus servers.
- Provides Security Center accounts for Vulnerability Managers to scan devices within ACAS.
- Experience with ACAS scan results and how to remediate vulnerability findings.
- Knowledge of the process of obtaining licenses for all HBSS ePO's and Tenable Security Centers.
- Expertise in the process of obtaining HBSS and ACAS kickstart ISO's from DISA.
- Extensive knowledge of building virtual servers, deploying, and patching all McAfee modules via the ePO, configuring McAfee policies for each environment
- STIG'ing HBSS Windows OS, McAfee policies to comply with benchmarks (Not reviewing or confirming), STIG'ing ACAS RHEL servers.
- Ability to Run SCAP scans on Windows and RHEL servers.
- Displays knowledge of updating RedHat 7.9 and 8 rpm's as they are released,
- setup RedHat yum local rpm repositories to patch offline ACAS servers.
- Deploying Rogue sensors on each subnet, Identifying Rogue subnets and rogue endpoints.
- Able to troubleshoot Security Center and Nessus scanner issues.
Minimum Qualifications:
- 9 years relevant experience with Bachelors in related field; 7 years relevant experience with Masters in related field; 4 years relevant experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 13 years relevant experience.
- Bachelor's degree in computer science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required.
- Information Systems Security Engineering Professional (ISSEP) and CISSP Certifications are preferred.
- Active Secret DoD clearance required.