Information Systems Security Engineer (ISSE)

American Systems Corp

Arlington, VA

JOB DETAILS
SKILLS
Analysis Skills, Change Management, Command Line, Computer Security, DCID - Director of Central Intelligence Directive, Documentation, Enterprise Protection, Federal Contracts, Firewall Administration, Incident Response, Information Systems Security Engineering (ISSE), International Classification of Diseases (ICD), Linux Operating System, McAfee Product Family, Microsoft Windows Operating System, Risk, SAP, Security Analysis, Security Architecture, Security Monitoring, Security System Design, Splunk, System Architecture, Systems Administration/Management, U.S. National Institute of Standards and Technology (NIST), United States Department of Defense (DoD), Writing Skills
LOCATION
Arlington, VA
POSTED
30+ days ago

Overview

AMERICAN SYSTEMS, a 100% employee-owned federal contractor, is seeking a highly experienced Information Systems Security Engineer (ISSE) to support a Special Access Program (SAP) in Arlington, VA.

This role is suited for an experienced security engineer who combines deep JSIG and RMF expertise with hands-on security assessment experience across both Linux and Windows systems in highly restricted environments. The ideal candidate understands security controls at an engineering level and can author, tailor, and defend documentation without reliance on automated RMF tools.

Responsibilities

As an Information Systems Security Engineer (ISSE) at AMERICAN SYSTEMS, you will:

  • Design and implement enterprise-level security architectures for SAP systems

  • Apply JSIG requirements to system authorization, control implementation, and documentation

  • Manually develop RMF/JSIG authorization artifacts, including SSPs, control narratives, POA&Ms, and supporting evidence

  • Perform hands-on security assessments on Linux and Windows systems, including command-line audits, compliance scans, log review, and control validation

  • Analyze scan results, identify security gaps, and support remediation planning and execution

  • Validate and implement host-based firewall and security configurations in coordination with system administrators

  • Manage and track POA&Ms through mitigation, remediation, or risk acceptance

  • Ensure system compliance through continuous monitoring of controls, procedures, and documentation

  • Identify security deficiencies and provide actionable remediation recommendations

  • Support system recovery and security oversight following outages or incidents

  • Participate in change management activities, assessing security impacts to SAP systems

  • Support security investigations, incident response, and remediation activities

  • Collaborate with engineering teams to integrate security requirements into system design and production releases

Qualifications

  • Active Top Secret/SCI with SAP eligibility

  • Bachelor's degree in a STEM discipline with 10-11 years of relevant experience, or

  • Master's degree with 8-10 years of relevant experience

  • Minimum 5 years of experience designing and implementing enterprise-scale security solutions with hands-on security assessment experience across Linux systems, including command-line validation

  • DoD 8140 IAT Level III-equivalent certification (e.g., SecurityX, CISSP, CCNP Security, CISA, GCED, GCIH, or CCSP)

  • Demonstrated experience supporting Special Access Programs (SAP)

  • Working knowledge of JSIG and its application to RMF authorization

  • Proven experience authoring RMF/JSIG artifacts by hand, without reliance on automated RMF tools (eMASS, Xacta, etc.)

  • Strong background in RMF, ICD 503, NIST SP 800-53, DCID 6/3, or current DoD authorization practices

  • Experience supporting security tools such as Splunk Enterprise, HBSS, McAfee ePO, ENS, and DLP

  • Demonstrated security engineering experience across Linux, Windows, Cisco platforms, databases (SQL or Oracle), and virtualized environments

  • Willingness to submit for a CI Polygraph

EEO Statement

EEO Race/Sex/Disability Status/Veteran Status

About the Company

A

American Systems Corp

Founded in 1975, AMERICAN SYSTEMS is one of the largest employee-owned companies in the United States, with approximately 1,400 employees nationwide. Based in the Washington, DC, suburb of Chantilly, VA, the company provides systems engineering, technical and managed services to government and private sector customers. AMERICAN SYSTEMS was named “Contractor of the Year” at the Greater Washington Government Contractor Awards in October, 2007.

COMPANY SIZE
1,000 to 1,499 employees
INDUSTRY
Internet Services
FOUNDED
1975