Be on Alert – Fraudulent Employment Offers. Learn More

Fairfax, Virginia, United States of America
JOB #R1901801

Information Systems Security Engineer

Working at ICF

Working at ICF means applying a passion for meaningful work with intellectual rigor to help solve the leading issues of our day. Smart, compassionate, innovative, committed, ICF employees tackle unprecedented challenges to benefit people, businesses, and governments around the globe. We believe in collaboration, mutual respect, open communication, and opportunity for growth. If you’re seeking to make a difference in the world, visit to find your next career. ICF—together for tomorrow.

The Information Security Systems Engineer is to report to the Program Manager on a cybersecurity project.  The ISSE will interact with system administrators and software product developers to implement information security measures from the beginning of the product development process through to deployment and sustainment.  The ISSE is to work primarily in our Centreville, VA facility along with occasional onsite work in the DC, Virginia, Maryland region. The selected candidate will have to maintain a security clearance. The candidate will support a variety of information systems at varying levels of complexity on the classified and controlled unclassified information (CUI) networks.  The candidate will travel occasionally and provide some after-hours support. This position is based in Centreville, VA.

Key Responsibilities:

  • Interface with customers, managers, and other leads to gather requirements, recommend solutions, provide status, and manage issues/requests
  • Work with the Program Manager of cybersecurity project to manage and maintain the project’s cybersecurity responsibilities including contributing to efficient resource planning, improving department standards and processes, and researching cybersecurity solutions to support program objectives
  • Interface with system administrators and software developers to incorporate security within the product from the beginning of the development process
  • Develop and implement information security procedures, system security plans, and POA&Ms for the operation of networked and standalone classified computers systems, as well as coordinating government agency approvals/accreditations
  • Conduct periodic system self-inspections/testing, weekly system audits, media reviews and investigations of computer security incidents, coordinating with other organizations for expertise as needed
  • Consult on the design, development, integration, and analysis of classified and CUI computing systems
  • Perform information system hardening configurations and remediation activities in accordance with company and customer standards
  • Provide customer service to end users of the information systems for cybersecurity-related requests and issues such as data transfers, user account management activities, software approval requests, end-user cybersecurity training, and others as assigned
  • Assist with product research and testing utilizing open source resources as well as coordination with appropriate vendors
  • Lead the project’s Incident Response team

Basic Qualifications:

  • 3 years’ experience with DoD Risk Management Framework (RMF)
  • Must have solid technical knowledge on configuring, hardening and managing RedHat Enterprise Linux, Microsoft Windows / Server systems
  • Strong written communication skills including the ability to document/diagram information systems and procedures, produce RMF accreditation packages, create Cyber Security policies, and generate other security artifacts
  • Experience utilizing:
    • NIST 800 Series Special Publications
    • Implementing DISA STIGs
    • Nessus or ACAS Scanning and Reporting
    • SCAP Compliance
    • Continuous Monitoring
    • Splunk or ElasticSearch
    • Amazon Web Services
  • Strong interpersonal skills, ability to work autonomously and on a team
  • IATT II Certification (CASP, CEH, etc.)
  • Active Security Clearance
  • Bachelor’s Degree in a Cyber Security, Information Technology or related discipline

Preferred Skills:

  • Active SCI
  • IAT or IAM III Certification
  • Experience supporting RMF for an Army project
  • Experience with HP Fortify
  • Experience with Openstack virtualization
  • Experience with FedRAMP and Cross Domain Solutions

Reasonable Accommodations are available for disabled veterans and applicants with disabilities in all phases of the application and employment process. To request an accommodation please email and we will be happy to assist. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. Read more about non-discrimination: EEO is the law and Pay Transparency Statement.

Virginia Client Office (VA88)

Who is ICF?

A consulting services company of over 5,000 experts across 67 countries, but not your typical consultants

More jobs you might like

Aug 13, 2019
Martinsville, Virginia, United States of America
Aug 12, 2019
Madison, Wisconsin, United States of America
Aug 8, 2019
Adelphi, Maryland, United States of America
Aug 8, 2019
Hampton, Virginia, United States of America
Aug 8, 2019
Multiple locations
Aug 8, 2019
Fairfax, Virginia, United States of America
See All Jobs