Systems Engineer III

Role Summary

This position for a Senior Information Systems Engineer (Endpoint Security & C&A) provides advanced security engineering, endpoint device management, and certification/accreditation support within a federal environment. The role entails designing, testing, and implementing security solutions, ensuring compliance with relevant standards and regulations. The engineer will collaborate closely with government staff to maintain security posture and respond to vulnerability reports.

Responsibilities

- Support government-furnished security assets, including system refreshes and upgrades, and deliver monthly status reports.

- Engineer security solutions for hardware, software, and services to prevent unauthorized access, malicious activity, and data breaches.

- Ensure security architecture complies with federal mandates such as NIST SP 800-53, NIST SP 800-207, DISA STIGs, FedRAMP, and FIPS standards.

- Conduct security reviews of network configurations, firewall rules, and endpoint solutions, recommending improvements.

- Safeguard Personally Identifiable Information (PII) in accordance with NIST SP 800-122 standards.

- Support real-time log forwarding to SIEM systems and assist with audit requirements.

- Monitor and analyze CVE and KEV catalogs for vulnerabilities, providing assessment reports and remediation plans.

- Track and report compliance with CISA Binding Operational Directives (BODs), including remediation deadlines.

- Develop technical plans for endpoint device integration, testing, and security validation.

- Prepare and update System Security Plans (SSPs), Contingency Plans, POA&Ms, and penetration test reports, addressing vulnerabilities within established timeframes.

Qualifications

- Bachelor’s degree in Information Systems, Computer Science, Engineering, or related field, or equivalent practical experience.

- Minimum of 8 years of hands-on experience in IT security engineering, endpoint security, vulnerability management, and C&A processes.

- Strong knowledge of federal security frameworks including NIST SP 800 series, FIPS 140-2, FedRAMP, FISMA, and CISA BODs.

- Experience with vulnerability assessment, CVE/KEV reporting, remediation, and compliance documentation.

- Proven ability to prepare and present security findings and compliance reports to executive management.

- Expertise in endpoint device engineering, testing, and security integration, including SIEM tool deployment.

- Excellent technical writing skills, especially in documenting C&A efforts, SSPs, and incident reports.

- This position requires eligibility for a U.S. Government security clearance. In accordance with federal law, U.S. citizenship is required.

- Availability to work on-site at the designated location.

Publishing Pay Range: $50.00 - $55.00 USD Hourly

This position is based in office and requires employee to work on-site.