{"id":5952,"date":"2026-01-16T17:54:10","date_gmt":"2026-01-16T17:54:10","guid":{"rendered":"https:\/\/eastbaysystems.com\/?post_type=jobpost&#038;p=5952"},"modified":"2026-01-16T17:54:12","modified_gmt":"2026-01-16T17:54:12","slug":"lead-information-system-security-engineer","status":"publish","type":"jobpost","link":"https:\/\/eastbaysystems.com\/index.php\/jobs\/lead-information-system-security-engineer\/","title":{"rendered":"Lead Information System Security Engineer"},"content":{"rendered":"\n<p><strong>Lead Information Systems Security Engineer (ISSE)<\/strong><\/p>\n\n\n\n<p><strong>Location:<\/strong>&nbsp;Washington, DC (Hybrid \u2013 3 days onsite \/ 2 days remote)<br><strong>Employment Type:<\/strong>&nbsp;Full-Time (Open to 1099 \/ Hourly Direct Hire)<br><strong>Clearance:<\/strong>&nbsp;Must be eligible for an Active Public Trust<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p><strong>Overview<\/strong><\/p>\n\n\n\n<p>We are seeking a&nbsp;<strong>Lead Information Systems Security Engineer (ISSE)<\/strong>&nbsp;to provide technical leadership and hands-on security engineering support for federal cloud and enterprise systems. This role focuses on securing cloud-based architectures, integrating security across the system lifecycle, and supporting Information System Security Officers (ISSOs) with authorization and accreditation activities.<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p><strong>Responsibilities<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Lead the design and implementation of secure IT and cloud solutions in\u00a0<strong>Microsoft Azure and Amazon Web Services (AWS)<\/strong><\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Integrate security requirements throughout the system development lifecycle, including application development and deployment pipelines<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Design and assess secure system and cloud architectures, including\u00a0<strong>Azure VNets, NSGs, Azure Firewall, Private Endpoints<\/strong>, and\u00a0<strong>AWS VPCs, subnets, route tables, security groups, and network ACLs<\/strong><\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Provide technical and engineering support to ISSOs performing RMF and A&amp;A activities<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Conduct\u00a0<strong>security impact assessments<\/strong>\u00a0for system, architecture, application, and configuration changes<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Perform\u00a0<strong>threat modeling<\/strong>\u00a0to identify, analyze, and mitigate risks associated with application and infrastructure design changes<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Execute\u00a0<strong>Supply Chain Risk Management (SCRM)<\/strong>\u00a0activities aligned with\u00a0<strong>NIST SP 800-161<\/strong><\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Evaluate SaaS, applications, and government solutions for compliance with NIST, FedRAMP, and federal security requirements<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Apply\u00a0<strong>application security<\/strong>\u00a0best practices, including secure coding principles, dependency management, and vulnerability remediation<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Support\u00a0<strong>DevSecOps<\/strong>\u00a0practices by integrating security controls, scanning, and monitoring into CI\/CD pipelines<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Apply security best practices to Kubernetes, containers, and Infrastructure as Code (Terraform)<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Collaborate with SOC teams<\/strong>\u00a0to verify log capture, security monitoring, access control enforcement, and ongoing alerting within defined RMF authorization boundaries<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Contribute to security architecture documentation, technical standards, and risk-based recommendations<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Mentor junior team members and provide technical guidance<\/li>\n<\/ul>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p><strong>Qualifications<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Bachelor\u2019s degree in Cybersecurity, IT, Engineering, or related field<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>8+ years of cybersecurity or ISSE experience<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Strong networking experience<\/strong>, including TCP\/IP, routing and switching, firewalls, VPNs, load balancing, and cloud networking<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Demonstrated experience with\u00a0<strong>Azure and AWS networking services<\/strong><\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Experience with\u00a0<strong>application security and DevSecOps<\/strong>\u00a0in cloud-based environments<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Strong knowledge of NIST RMF, FedRAMP,\u00a0<strong>NIST SP 800-161<\/strong>, and\u00a0<strong>Common Criteria<\/strong><\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Experience conducting security impact assessments and threat modeling<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Experience with Kubernetes, containers, and Infrastructure as Code preferred<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Experience collaborating with SOC teams for continuous monitoring and alerting<\/li>\n<\/ul>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Strong communication and leadership skills<\/li>\n<\/ul>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p><strong>Preferred Certifications<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>CISSP or equivalent cybersecurity certification or equivalent<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Lead Information Systems Security Engineer (ISSE) Location:&nbsp;Washington, DC (Hybrid \u2013 3 days onsite \/ 2 days remote)Employment Type:&nbsp;Full-Time (Open to 1099 \/ Hourly Direct Hire)Clearance:&nbsp;Must be eligible for an Active Public Trust Overview We are seeking a&nbsp;Lead Information Systems Security Engineer (ISSE)&nbsp;to provide technical leadership and hands-on security engineering support for federal cloud and enterprise [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"menu_order":0,"template":"","jobpost_category":[],"jobpost_job_type":[],"jobpost_location":[],"jobpost_tag":[],"class_list":["post-5952","jobpost","type-jobpost","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/eastbaysystems.com\/index.php\/wp-json\/wp\/v2\/jobpost\/5952","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/eastbaysystems.com\/index.php\/wp-json\/wp\/v2\/jobpost"}],"about":[{"href":"https:\/\/eastbaysystems.com\/index.php\/wp-json\/wp\/v2\/types\/jobpost"}],"author":[{"embeddable":true,"href":"https:\/\/eastbaysystems.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"wp:attachment":[{"href":"https:\/\/eastbaysystems.com\/index.php\/wp-json\/wp\/v2\/media?parent=5952"}],"wp:term":[{"taxonomy":"jobpost_category","embeddable":true,"href":"https:\/\/eastbaysystems.com\/index.php\/wp-json\/wp\/v2\/jobpost_category?post=5952"},{"taxonomy":"jobpost_job_type","embeddable":true,"href":"https:\/\/eastbaysystems.com\/index.php\/wp-json\/wp\/v2\/jobpost_job_type?post=5952"},{"taxonomy":"jobpost_location","embeddable":true,"href":"https:\/\/eastbaysystems.com\/index.php\/wp-json\/wp\/v2\/jobpost_location?post=5952"},{"taxonomy":"jobpost_tag","embeddable":true,"href":"https:\/\/eastbaysystems.com\/index.php\/wp-json\/wp\/v2\/jobpost_tag?post=5952"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}