Information System Security Engineer (ISSE)

TLA is seeking an Information System Security Engineer (ISSE). This is a critical role responsible for designing, developing, implementing, and maintaining secure information systems and networks. The ISSE ensures that security requirements are effectively integrated into systems throughout their entire lifecycle, from design to disposal. This position involves close collaboration with system owners, developers, and other stakeholders to identify vulnerabilities, assess risks, and implement robust security controls in accordance with industry standards and regulatory frameworks such as the NIST Risk Management Framework (RMF) and DoD 8570/8140 guidelines. · Security Architecture and Design: Design, develop, and implement network and system security measures that provide confidentiality, integrity, availability, authentication, and non-repudiation. · Risk Management: Assess and mitigate system security threats and risks throughout the program life cycle, including performing technical security assessments and vulnerability analyses. · Compliance and Documentation: Ensure systems comply with applicable security policies, standards, and methodologies (e.g., NIST, DoD, FISMA). Prepare and maintain security documentation, including System Security Plans (SSPs), Plan of Action and Milestones (POA&Ms), and security assessment reports. · Testing and Validation: Plan and conduct security verification testing, using tools like vulnerability scanners (e.g., Nessus, ACAS) to identify weaknesses and ensure controls are in place and effective. · Operational Support and Incident Response: Monitor systems for irregular behavior, support security incident response activities, and manage changes to systems while assessing their security impact. · Collaboration and Guidance: Serve as a subjec