Apply on Employer Site

AT&T · 1 month ago

Information Systems Security Engineer – VATeam (ISSE I) (Government)

Columbia, MD

Full-time

Onsite

Mid Level

$98K/yr - $138K/yr

3+ years exp

AT&T Global Public Sector is a trusted provider of secure, IP enabled, cloud-based, network solutions and professional services to the Federal Government. The Information Systems Security Engineer will support the team by performing vulnerability scans, analyzing results, and managing cyber risk to enhance the organization's security posture.

CollaborationCommunications InfrastructureMobileService IndustryTelecommunicationsWireless

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Configure, operate, and maintain Tenable.sc and Nessus to identify and track vulnerabilities across all environments

Conduct STIG compliance scans and interpret results to assist system administrators and ISSEs to validate system hardening and control effectiveness

Analyze vulnerability data and trends; create actionable findings and coordinate remediation efforts with system administrators and ISSEs

Integrate vulnerability and compliance data into Splunk for correlation, trend analysis, and automated compliance reporting

Develop dashboards and reports to visualize system risk posture and track remediation progress

Support RMF (Risk Management Framework) activities, providing technical input for security controls (e.g., Tenable results)

Assist in developing or refining scanning policies, baselines, and SOPs to improve security posture and compliance consistency

Support audits and assessments by providing detailed vulnerability data, remediation evidence, and STIG compliance documentation

Implementing security vulnerability testing tools to provide continuous monitoring and patch verification

Test and evaluate configurations in a lab environment

Knowledge of servers, virtualization, routers, switches, and firewalls as well as VLANS, routing and network segmentation

Working knowledge of DoD STIGs, and RMF process (NIST 800-53)

Experience using Splunk for data ingestion, search queries, correlation, and report creation

Provide security operations support as needed

Excellent communication and teamwork skills

Results oriented, high energy, self-motivated

Candidate may be required to respond to after-hours requests as required in a 24 x 7 environment

Qualification

Vulnerability scanningTenable.scNessusDoD STIGsRisk Management FrameworkSplunkInformation AssuranceSecurity certificationsCommunication skillsTeamwork skillsSelf-motivated

Required

3-5 years experience as an ISSE on programs and contracts of similar scope, type, and complexity within the Federal Government is required

Bachelor's degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required

Four (4) years of additional ISSE experience may be substituted for a bachelor's degree

Active DoD 8570 IAT Level II or III certification (e.g., Security+, CASP, CISSP, or equivalent)

Required Clearance: TS/SCI with polygraph

Benefits

Medical/Dental/Vision coverage

401(k) plan

Tuition reimbursement program

Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays) \Pro-rated when working less than 40 hrs/wk.

Paid Parental Leave

Paid Caregiver Leave

Additional sick leave beyond what state and local law require may be available but is unprotected

Adoption Reimbursement

Disability Benefits (short term and long term)

Life and Accidental Death Insurance

Supplemental benefit programs: critical illness/accident hospital indemnity/group legal

Employee Assistance Programs (EAP)

Extensive employee wellness programs

Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone