DoD 8570

Information System Security Engineer (ISSE) – TS/SCI Full Scope Poly – Annapolis Junction, MD

Information System Security Engineer (ISSE) – TS/SCI Full Scope Poly

📍 Location: Annapolis Junction, MD
🏢 Work Arrangement: 100% Onsite
💼 Employment Type: Full-Time
🔒 Security Clearance Required: Active TS/SCI with Full Scope Polygraph (NSA Preferred)
🇺🇸 Citizenship: U.S. Citizen Required
🎓 Certification Required: DoD 8570/8140 IASAE Level II Compliant Certification
🚫 Visa Sponsorship: Not Available
🚚 Relocation Assistance: Available
💰 Compensation: $100,000 – $200,000 Base Salary

Overview

A leading government technology contractor is seeking Information System Security Engineers (ISSEs) to support mission-critical classified government programs.

This role focuses on integrating cybersecurity engineering principles throughout the entire system lifecycle, including system design, implementation, accreditation, continuous monitoring, and sustainment. The ISSE will play a critical role in Risk Management Framework (RMF) execution, Assessment & Authorization (A&A) activities, security control validation, and ongoing cybersecurity compliance.

The ideal candidate will possess a strong blend of cybersecurity engineering, RMF expertise, technical security assessment experience, and security architecture knowledge within highly secure classified environments.

Key Responsibilities

Risk Management Framework (RMF)

  • Support the full RMF lifecycle for classified information systems.

  • Develop and maintain RMF documentation and security artifacts.

  • Assist with Authority to Operate (ATO) activities and sustainment.

  • Support Assessment & Authorization (A&A) efforts.

  • Maintain body-of-evidence packages for accreditation activities.

Security Engineering

  • Implement and validate security controls.

  • Perform Security Control Traceability and technical validation.

  • Support system boundary definition and security architecture development.

  • Conduct technical security assessments and risk analysis.

  • Recommend security improvements and mitigation strategies.

Compliance & Continuous Monitoring

  • Participate in Continuous Monitoring (ConMon) activities.

  • Conduct compliance assessments and security reviews.

  • Analyze vulnerability scan results and remediation efforts.

  • Verify remediation effectiveness and identify false positives.

  • Ensure ongoing compliance with cybersecurity requirements.

Vulnerability Management & Hardening

  • Support vulnerability management programs.

  • Implement and validate STIG compliance.

  • Support patch validation and security compliance efforts.

  • Assist with system hardening initiatives.

  • Coordinate remediation activities with technical teams.

Stakeholder Collaboration

  • Work closely with:

    • ISSOs

    • ISSMs

    • Security Control Assessors (SCAs)

    • System Owners

    • System Administrators

  • Support accreditation, compliance, and cybersecurity engineering efforts across mission systems.

Required Qualifications

Security Requirements

✔ Active TS/SCI Clearance

✔ Active Full Scope Polygraph (NSA Preferred)

✔ U.S. Citizenship Required

Certification Requirement

✔ DoD 8570/8140 IASAE Level II Compliant Certification

Examples include:

  • CISSP

  • CASP+

  • CCSP

  • CSSLP

Cybersecurity & RMF Experience

Strong experience with:

  • Risk Management Framework (RMF)

  • Assessment & Authorization (A&A)

  • Authority to Operate (ATO)

  • Security Control Implementation

  • Security Control Validation

  • Continuous Monitoring (ConMon)

NIST Knowledge

Strong familiarity with:

  • NIST SP 800-37

  • NIST SP 800-53 Rev. 3 and/or Rev. 5

  • Security Control Frameworks

  • RMF Compliance Processes

RMF & Compliance Tools

Experience with one or more of:

  • LATTEART

  • XACTA

  • BISCOTTI

  • WATCHCAT

  • STE

Additional experience with:

  • Compliance scanning tools

  • Configuration assessment tools

  • Vulnerability management platforms

Core ISSE Skill Areas

Security Engineering

  • Security Control Implementation

  • Security Control Validation

  • Security Architecture Support

  • System Boundary Definition

Compliance & Accreditation

  • Assessment & Authorization (A&A)

  • RMF Artifact Development

  • Accreditation Package Support

  • Body of Evidence Management

Vulnerability Management

  • Vulnerability Analysis

  • Remediation Tracking

  • Patch Validation

  • STIG Compliance

  • Security Hardening

Risk Management

  • Technical Risk Analysis

  • Compliance Validation

  • Continuous Monitoring (ConMon)

  • Security Assessment Support

Preferred Qualifications

Government & Classified Environment Experience

  • Classified Government cybersecurity programs.

  • Large-scale enterprise systems.

  • Mission-critical environments.

Technical Infrastructure Exposure

Experience supporting:

  • Enterprise Linux environments

  • Network infrastructure

  • Cloud environments

Stakeholder Coordination

Experience collaborating with:

  • ISSOs

  • ISSMs

  • Security Control Assessors

  • System Owners

  • Engineering Teams

Must-Have Requirements

Clearance

✅ Active TS/SCI Clearance

✅ Active Full Scope Polygraph

Certification

✅ IASAE Level II Certification

Cybersecurity

✅ RMF Experience

✅ A&A Experience

✅ ATO Experience

✅ Security Control Validation

Compliance

✅ Continuous Monitoring

✅ Vulnerability Management

✅ STIG Implementation

Documentation

✅ RMF Artifacts

✅ Accreditation Packages

✅ Security Documentation

Screening Questions

  1. Do you currently hold an active TS/SCI clearance with a Full Scope Polygraph?

  2. Was your Full Scope Polygraph issued by NSA?

  3. When was your most recent Full Scope Polygraph completed?

  4. Which IASAE Level II certification do you currently hold (CISSP, CASP+, CCSP, CSSLP, etc.)?

  5. How many years of ISSE or cybersecurity engineering experience do you have?

  6. Have you supported the full RMF lifecycle, including A&A and ATO activities?

  7. Which RMF tools have you used (XACTA, LATTEART, BISCOTTI, WATCHCAT, STE)?

  8. Do you have experience implementing and validating security controls?

  9. Have you supported STIG implementation, vulnerability remediation, and compliance validation?

  10. Do you have experience supporting classified government systems?

Ideal Candidate Profile

The ideal candidate will:

  • Hold an active TS/SCI Full Scope Polygraph.

  • Possess an active IASAE Level II certification.

  • Have strong cybersecurity engineering experience within classified environments.

  • Be highly knowledgeable in RMF, A&A, and ATO processes.

  • Understand security architecture, control implementation, and compliance validation.

  • Have experience supporting vulnerability management and STIG compliance.

  • Demonstrate excellent analytical, troubleshooting, and documentation skills.

  • Balance mission objectives with cybersecurity requirements and risk management practices.

Candidate Snapshot

Requirement

Details

Clearance

Active TS/SCI + Full Scope Poly

Citizenship

U.S. Citizen

Experience Level

Mid-Level to Senior

Certification

IASAE Level II Required

Frameworks

RMF, NIST 800-37, NIST 800-53

Compliance

A&A, ATO, ConMon

Security

Control Implementation & Validation

Documentation

RMF Artifacts & Accreditation Packages

Tools

XACTA, LATTEART, BISCOTTI, WATCHCAT, STE

Location

Annapolis Junction, MD

Work Arrangement

100% Onsite

Travel

None

Compensation

$100K – $200K

Relocation

Available

Why This Opportunity?

Mission Impact

Support highly classified systems that directly contribute to critical national security missions.

Cybersecurity Engineering Focus

Move beyond compliance into hands-on security engineering, architecture support, security control validation, and accreditation activities.

Technical Growth

Gain exposure to advanced RMF processes, security engineering practices, vulnerability management, and enterprise cybersecurity operations.

Strong Benefits Package

  • 3 Weeks PTO

  • 11 Federal Holidays

  • Medical & Dental Coverage

  • Life Insurance

  • STD & LTD Coverage

  • 401(k) with Company Match

  • Long-Term Career Development

This opportunity is ideal for an Information System Security Engineer (ISSE), Cybersecurity Engineer, RMF Engineer, Security Compliance Engineer, Cybersecurity Architect, A&A Specialist, or Security Controls Engineer with an active TS/SCI Full Scope Polygraph and IASAE Level II certification seeking to support highly sensitive government programs.

 

DevOps / AWS / Python Engineer – Top Secret Clearance | Multiple U.S. Locations

DevOps / AWS / Python Engineer (Mid–Senior) – Top Secret Clearance Required

📍 Locations (Onsite):

  • Gaithersburg, MD

  • St. Louis, MO

  • Alexandria, VA

  • Chantilly, VA

🏢 Work Model: 100% Onsite
💼 Employment Type: Full-Time
💰 Salary Range: $100,000 – $180,000
🔐 Clearance: Active Top Secret (SCI required post-hire; CI Poly willingness)
🎓 Education: Bachelor’s Degree Required
🚚 Relocation Assistance: Available

About the Role

This is a hands-on DevOps / Cloud Engineering role supporting the development, deployment, automation, and sustainment of mission-critical systems in a highly secure environment. You’ll work closely with development teams to modernize workflows, automate manual processes, and operate scalable AWS-based solutions using DevSecOps best practices.

This role is ideal for engineers with strong Python + AWS + GitLab CI/CD experience who enjoy operating at the intersection of infrastructure, automation, and secure software delivery.

Key Responsibilities

  • Automate manual operational and deployment processes

  • Develop Windows automation using Python and/or PowerShell

  • Support deployment of microservices via DevSecOps pipelines in Windows & Linux environments

  • Develop, update, and maintain GitLab CI/CD pipelines

  • Configure, troubleshoot, and deploy Docker containers

  • Review source code in Git and produce supporting engineering documentation

  • Support developer deployments and testing activities

  • Provide technical guidance across microservices and platform capabilities

  • Create and maintain DevOps documentation

  • Perform security remediation based on vulnerability scan results

Required Qualifications

  • Active Top Secret Security Clearance with ability to obtain SCI post-hire

  • CompTIA Security+ CE (or equivalent DoD 8570 IAT Level II certification)

  • U.S. Citizenship required

  • Bachelor’s degree with 4+ years of relevant experience
    (or Master’s degree with 2+ years)

  • 2–3 years of experience with Kubernetes (OpenShift or EKS preferred)

  • 2–3 years of experience with Docker containers

  • Strong scripting skills in Python and/or PowerShell

  • Experience administering both Windows and Linux systems

  • Experience with AWS services (CloudFormation, S3, ECS, Lambda, API Gateway, autoscaling)

  • Experience with GitLab CI/CD, including scripting and troubleshooting

  • Understanding of DevSecOps methodologies and workflows

  • Familiarity with CI/CD pipeline development and sustainment

  • Experience supporting development testing in cloud environments

  • Strong communication, organization, and collaboration skills

Preferred / Nice-to-Have Skills

  • AWS certifications (DevOps Engineer, Solutions Architect, etc.)

  • Linux certifications

  • Experience with AWS Lambda, ECS, and serverless architectures

  • Experience with ArcGIS or geospatial technologies

  • Familiarity with collaboration tools (Jira, Confluence, RocketChat)

Key Focus Areas for Screening

When evaluating candidates, the strongest profiles will demonstrate:

  • Python scripting experience (ideally with AWS automation using Boto3)

  • Hands-on experience with GitLab CI/CD and best practices

  • Solid working knowledge of AWS services and architectures

Ideal Candidate

  • Security+ certified and clearance-ready

  • Strong DevOps engineer with a cloud-first mindset

  • Comfortable automating, deploying, and securing AWS-based systems

  • Confident working in classified, mission-driven environments

  • Detail-oriented, proactive, and collaborative

Additional Details

  • Security Clearance Required: Yes

  • Visa Sponsorship: Not available

  • Travel: None

  • Benefits: Full benefits package included

 

DevOps / AWS / Python Engineer – Top Secret Clearance (Onsite, U.S.) - 4 Locations

DevOps / AWS / Python Engineer (Mid–Senior) – Top Secret Clearance Required

📍 Locations (Onsite):

  • Gaithersburg, MD

  • St. Louis, MO

  • Alexandria, VA

  • Chantilly, VA

🏢 Work Model: 100% Onsite
💼 Employment Type: Full-Time
💰 Salary Range: $100,000 – $180,000
🔐 Clearance: Active Top Secret (SCI required post-hire; CI Poly willingness)
🎓 Education: Bachelor’s Degree Required
🚚 Relocation Assistance: Available

About the Role

This is a hands-on DevOps / Cloud Engineering role supporting the development, deployment, automation, and sustainment of mission-critical systems in a highly secure environment. You’ll work closely with development teams to modernize workflows, automate manual processes, and operate scalable AWS-based solutions using DevSecOps best practices.

This role is ideal for engineers with strong Python + AWS + GitLab CI/CD experience who enjoy operating at the intersection of infrastructure, automation, and secure software delivery.

Key Responsibilities

  • Automate manual operational and deployment processes

  • Develop Windows automation using Python and/or PowerShell

  • Support deployment of microservices via DevSecOps pipelines in Windows & Linux environments

  • Develop, update, and maintain GitLab CI/CD pipelines

  • Configure, troubleshoot, and deploy Docker containers

  • Review source code in Git and produce supporting engineering documentation

  • Support developer deployments and testing activities

  • Provide technical guidance across microservices and platform capabilities

  • Create and maintain DevOps documentation

  • Perform security remediation based on vulnerability scan results

Required Qualifications

  • Active Top Secret Security Clearance with ability to obtain SCI post-hire

  • CompTIA Security+ CE (or equivalent DoD 8570 IAT Level II certification)

  • U.S. Citizenship required

  • Bachelor’s degree with 4+ years of relevant experience
    (or Master’s degree with 2+ years)

  • 2–3 years of experience with Kubernetes (OpenShift or EKS preferred)

  • 2–3 years of experience with Docker containers

  • Strong scripting skills in Python and/or PowerShell

  • Experience administering both Windows and Linux systems

  • Experience with AWS services (CloudFormation, S3, ECS, Lambda, API Gateway, autoscaling)

  • Experience with GitLab CI/CD, including scripting and troubleshooting

  • Understanding of DevSecOps methodologies and workflows

  • Familiarity with CI/CD pipeline development and sustainment

  • Experience supporting development testing in cloud environments

  • Strong communication, organization, and collaboration skills

Preferred / Nice-to-Have Skills

  • AWS certifications (DevOps Engineer, Solutions Architect, etc.)

  • Linux certifications

  • Experience with AWS Lambda, ECS, and serverless architectures

  • Experience with ArcGIS or geospatial technologies

  • Familiarity with collaboration tools (Jira, Confluence, RocketChat)

Key Focus Areas for Screening

When evaluating candidates, the strongest profiles will demonstrate:

  • Python scripting experience (ideally with AWS automation using Boto3)

  • Hands-on experience with GitLab CI/CD and best practices

  • Solid working knowledge of AWS services and architectures

Ideal Candidate

  • Security+ certified and clearance-ready

  • Strong DevOps engineer with a cloud-first mindset

  • Comfortable automating, deploying, and securing AWS-based systems

  • Confident working in classified, mission-driven environments

  • Detail-oriented, proactive, and collaborative

Additional Details

  • Security Clearance Required: Yes

  • Visa Sponsorship: Not available

  • Travel: None

  • Benefits: Full benefits package included

 

Information Systems Security Engineer (ISSE) & Information Systems Security Officer (ISSO) | TS/SCI FS Poly | $220K–$260K | Annapolis Junction, MD

Job Title: Information Systems Security Engineer (ISSE) & Information Systems Security Officer (ISSO)
Location: Annapolis Junction, Maryland (100% Onsite)
Clearance Required: TS/SCI with Full Scope Polygraph (FS Poly)
Compensation: $220,000 – $260,000 base salary
Employment Type: Full-time
Relocation Assistance: Possible for ideal candidate
Benefits: Full benefits offered
Visa Candidates: Not considered

Overview:

We are hiring two experienced cybersecurity professionals for an exciting and mission-critical government program based in Annapolis Junction, MD. Both roles require active TS/SCI with Full Scope Poly (poly must be within the past 5 years and from a Maryland Intelligence Customer). While both positions are integral to the security posture of the program, each requires a different focus, background, and certification path.

1. Information Systems Security Engineer (ISSE)

Role ID: 727
Seniority Level: Mid to Senior
Clearance: TS/SCI w/ FS Poly (mandatory)
Certifications Required:

  • CISSP (Required)

  • ISSEP (Preferred or willing to obtain during crossover if CISSP has been held for 2+ years)

Key Responsibilities:

  • Develop and implement system security designs and architectures for complex, large-scale systems.

  • Lead security risk assessment and mitigation throughout the system development lifecycle.

  • Conduct system security planning, vulnerability testing, and compliance verification.

  • Analyze and implement secure communication protocols, encryption tools, and secure OS configurations.

  • Collaborate with engineers across integration, testing, and development teams to ensure compliance with classified information handling.

  • Use tools such as Nessus, NMAP, Wireshark for threat identification and remediation.

  • Support RMF, risk management activities, and IA (Information Assurance) processes.

Preferred Experience:

  • Bachelor’s or Master’s in Cybersecurity, Information Assurance, or related field.

  • Experience with Defense-in-Depth principles, secure software architecture, and penetration testing tools.

  • Proficient in scripting languages and secure configuration management.

2. Information Systems Security Officer (ISSO)

Role ID: 643
Seniority Level: Mid to Senior
Clearance: TS/SCI w/ FS Poly (mandatory)
Certifications Required:

  • IAT Level II or IAM Level II certification (Required)

    • Examples: Security+ CE, CASP+, CISSP, CISM, or similar

Key Responsibilities:

  • Act as ISSO for a large-scale software development and IT operations program.

  • Enforce security policies and maintain operational security posture of systems.

  • Manage documentation for system Certification & Accreditation (C&A) and Security Plans (SSPs).

  • Conduct vulnerability remediation, IAVA compliance, and configuration management for system security.

  • Support day-to-day information system operations, network security, and audit readiness.

  • Coordinate with ISSM and other security stakeholders to ensure secure system integration and lifecycle support.

Preferred Experience:

  • 10+ years as an ISSO in complex, standalone, or connected environments.

  • Experience maintaining SSPs, performing incident response, and managing vulnerability scans.

  • Familiarity with tools supporting IAVA management, CM, and system auditing.

  • Bachelor’s degree in a related field and 12+ years of overall security experience preferred.

Ideal Candidate Profile (Both Roles):

  • Must hold a current FS Poly with the Maryland Intelligence Customer (within the past 5 years).

  • No prior CCAs (Counterintelligence Concerns).

  • Excellent verbal/written communication skills and team collaboration.

  • Strong commitment to best practices and high-integrity security operations.

Additional Notes:

  • Both roles are 100% onsite in Annapolis Junction, MD.

  • Do not repost these positions.

  • Candidates must be U.S. Citizens with an active TS/SCI with Full Scope Polygraph.