Information Systems Security Engineer

We are seeking an Information Systems Security Engineer (ISSE) to join our team. Working at NT Concepts means that you are part of an innovative, agile company dedicated to solving the most critical challenges in National Security. We're looking for the best and the brightest to join us in supporting this mission. If meaningful work, initiative, creativity, and continuous self-improvement are important to your career, join our growing team and discover What's Next for you. Mission Focus: As a member of our solutions delivery team, you will have the unique opportunity to work on programs advancing the most critical government systems. NT Concepts is seeking an experienced Information Systems Security Engineer (ISSE ) for an exciting data transformation opportunity within our Intel Community. Clearance : Active TS/SCI CI Poly Location/Flexibility: Remote Flexible with on-site work in the DC Metro area based on program need RESPONSIBILITIES Responsible for leading cybersecurity initiatives, managing the security posture of information systems, and ensuring compliance with regulatory frameworks. The successful candidate will work closely with system administrators, developers, and key stakeholders to implement and maintain robust cybersecurity controls. Lead the development and maintenance of cybersecurity documentation, which includes Plans of Action and Milestones (POA&M), Information Assurance Vulnerability Management (IAVM) plans, and other security-related artifacts. This entails developing comprehensive POA&Ms to track and manage remediation efforts for identified vulnerabilities. Additionally, it involves creating and maintaining IAVM plans to review and implement Information Assurance Vulnerability Alerts (IAVAs), Information Assurance Vulnerability Bulletins (IAVBs), and Information Assurance Vulnerability Technical Advisories (IAVTs), ensuring all updates are documented and tracked effectively. Furthermore, the position requires producing and updating cybersecurity plans, procedures, and guidelines to maintain compliance with regulatory requirements. Coordinate and plan Information Assurance (IA) efforts for the deployment and sustainment of Information Systems (IS), whether they are standalone or part of an enterprise. This involves planning and executing IA activities to support the deployment and sustainment of IS, ensuring that systems are secure and compliant with Department of Defense (DoD) regulations. The role also requires working closely with system administrators and other stakeholders to integrate IA considerations into system development and maintenance processes. Additionally, it involves developing and implementing IA strategies for both standalone systems and enterprise systems. Provide guidance and instruction on regulatory frameworks such as NIST 800-53, ICD503, and CNSSI1253 to ensure compliance with Department of Defense (DoD) and other relevant standards. This includes offering expert advice on the application of these standards to ensure that systems meet compliance requirements. Additionally, it requires conducting training sessions and workshops to educate team members and stakeholders on these regulatory frameworks. Furthermore, the role involves regularly reviewing and updating compliance documentation to reflect the latest standards and regulations. Perform self-assessment tests using standard Commercial Off-The-Shelf (COTS) and Government Off-The-Shelf (GOTS) tools to complete full Authorization to Operate (ATO) assessments. This involves utilizing tools such as ACAS, SPLUNK, and other COTS/GOTS solutions to conduct thorough self-assessment tests. Additionally, the role requires analyzing assessment results to identify vulnerabilities and developing remediation plans. Furthermore, it includes documenting assessment findings and preparing reports to support ATO assessments. Collaborate with system administrators, database administrators (DBAs), and developers to provide guidance and direction for testing and implementing changes to adjudicate vulnerabilities and implement cybersecurity controls. This involves working closely with system administrators, DBAs, and developers to test and implement necessary changes to address identified vulnerabilities. Additionally, it requires providing clear guidance and direction on cybersecurity best practices and controls. Furthermore, the role involves ensuring that all changes are properly tested and documented to maintain system security. REQUIREMENTS Bachelor's degree in cybersecurity related field. Active TS/SCI with CI Poly Required Strong expertise in cybersecurity, risk management, and IT systems support. Extensive experience in developing and maintaining security documentation, performing risk assessments, and providing technical support to project teams. CompTIA Security Certification Certified Ethical Hacker (CEH) CompTIA Advanced Security Practitioner (CASP) Physical Requirements: Prolonged periods of sitting at a desk and working on a computer Must be able to lift 10-15 pounds at times.