Overview
We are actively seeking Cyber Security Systems Engineers to support the customer's Division level A&A projects which has several Branches within it. The A&A projects are therefore at various levels within the customer organization depending upon which team is responsible for initial development and accreditation vs. long term Operations and Maintenance support. Bachelor's or Master's Degree are preferred in one or more discipline but can be waived if previous direct ISSE support to this customer's agency.
What will you do?
* Serve as the primary liaison between technical teams and security stakeholders, translating complex technical concepts into clear security documentation and requirements
* Support multiple complex network environments involving shared infrastructure and multiple security enclaves
* Document security control implementations and gather supporting artifacts for RMF and ICD 503 Assessment & Authorization (A&A) activities
* Develop and maintain System Security Plans (SSPs) and CONOPS documentation using tools such as Greenlight
* Collect and compile A&A documentation including Contingency Plans (CP), General User Guides (GUG), Privileged User Guides (PUG), and Standard Operating Procedures (SOPs)
* Support Security Controls Assessors (SCA) and Information System Security Officers/Managers (ISSO/M) during A&A reviews and assessments
* Track and manage Plans of Action and Milestones (POA&Ms), including mitigation status and evidence collection
* Coordinate with engineering teams, contractors, and stakeholders to gather required security documentation and artifacts
* Navigate customer A&A processes to support Authorization to Develop (ATD), Interim Authority to Test (IATT), and Authority to Operate (ATO) approvals
* Monitor and track A&A lifecycle status across multiple projects, including re-accreditation and extension timelines
Do you have what it takes?
* Must have a Top Secret Clearance with Polygraph * Minimum of eleven (11) years' experience. * Strong multi-tasking, communication, and facilitation skills with the ability to work across technical and non-technical audiences
* Experience working in complex enterprise environments with shared networks and multiple security enclaves
* Ability to understand and communicate technical implementation details in security and compliance terms
* Experience supporting RMF and ICD 503-based Assessment & Authorization (A&A) processes
* Experience developing and maintaining security documentation and compliance artifacts
* Familiarity with coordinating across engineering, security, and program stakeholders in a structured environment
Preferred Education, Experience, & Skills: * Prior experience as an ISSE supporting the customer environment
* Prior experience as an ISSO supporting enterprise security operations
* Experience with security and vulnerability management tools such as Greenlight, RoadRunner, Rapid7, WebInspect, AppDetective, and Splunk
* Experience working in cloud environments (AWS, Microsoft Azure, or similar platforms)
* Experience with virtualization technologies such as VDI and VMware
* Basic understanding of cloud security controls, PKI, STIG compliance, vulnerability management, and SecDevOps practices
* Certifications such as CISSP or GSLC
* AWS Certified Security - Specialty certification
* Proficiency with Microsoft Office 365 tools, including Excel for tracking and reporting
|
VTG Defense
May 15, 2026