Information Systems Security Engineer 3 (8381) jobs in United States
cer-icon
Apply on Employer Site
company-logo

ACS Professional Staffing · 1 day ago

Information Systems Security Engineer 3 (8381)

positionVancouver, WA
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$65.21/hr - $93.19/hr
date10+ years exp

ACS Professional Staffing is looking for an employee to work on-site with their client. This Information Systems Security Engineer 3 position supports the implementation, operation, and maintenance of mission-critical systems that enable secure and reliable operations across complex, high-availability infrastructure environments.

ConsultingRecruitingStaffing Agency
check
Growth OpportunitiesbadNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Provide technical expertise on control center and field infrastructure security architecture and management for mission-critical systems
Apply broad knowledge of power system operations and associated control center and field systems, including security and regulatory requirements related to computer networks, system software, data acquisition, telecommunications, and related hardware
Serve as a technical security expert providing advice, guidance, and recommendations on critical infrastructure systems, upgrades, and enhancements
Recommend security strategies for system, software, and hardware architectures, including technical plans, specifications, designs, integration plans, test plans, and project plans
Advise technical and security practitioners on the application and adaptation of security technologies, standards, concepts, and practices
Act as the project security and compliance lead on assigned projects, supporting interdisciplinary teams executing complex infrastructure initiatives
Verify that project plans conform to applicable security and compliance standards, policies, and guidelines
Provide technical expertise in the recommendation, development, and implementation of approved operational cybersecurity and compliance strategies, processes, guidelines, and projects
Provide technical input and assistance with implementing cybersecurity approaches, methods, and solutions that maintain compliance with applicable laws, regulations, and directives
Develop, draft, and execute approved testing plans, and provide results and recommendations
Provide security engineering expertise and recommendations to support infrastructure protection efforts
Collaborate on the development of cybersecurity architectures, including maintaining accurate and comprehensive documentation
Perform detailed and comprehensive security event analysis
Provide guidance and input into technical reviews of proposed projects and system security authorization processes
Provide technical input and support to continuous assessment and monitoring activities
Draft and recommend project plans, timelines, milestones, and objectives for system upgrades, patches, changes, and security monitoring efforts
Perform risk assessments and execute tests to validate system functionality and security controls
Validate that appropriate security controls are in place to safeguard digital assets and critical electronic infrastructure
Coordinate and support security and compliance initiatives designed to anticipate, assess, and minimize system vulnerabilities
Support initiatives that integrate across disciplines, platforms, and internal teams, including people, processes, and systems
Recommend the scope and level of detail for system security plans and assist with drafting security-related policies, processes, and procedures
Develop and draft long-range security plans and strategies to identify, evaluate, mitigate, and minimize risks associated with system vulnerabilities
Stay current on emerging security technologies and threats and recommend changes or improvements as appropriate
Research and review proposed systems, networks, and software designs for potential security risks and recommend mitigation strategies
Identify integration issues related to new system implementations and recommend resolution options
Provide subject matter expertise and technical guidance to security and technical staff on ad hoc and ongoing initiatives
Provide technical guidance and assistance to less experienced team members, including cross-training as needed

Qualification

CISSPCISACISMNERC CIPNIST 800 seriesCybersecurity complianceSecurity architectureRisk Management FrameworkSecurity event analysisTechnical guidanceTechnical documentationTeam collaboration

Required

Bachelor of Science in Computer Science, Information Technology, or a directly related technical discipline is highly preferred
10 years of experience is required with an applicable bachelor's degree
12 years of experience is required with an applicable associate's degree
14 years of experience is required without a degree or an applicable degree
Experience must include hands-on technical implementation of networks and systems
Experience evaluating various technical, operational, and management solutions to security problems, using written language and various media to present alternatives and recommendations
Proven ability to develop documentation sufficient to arrive at logical and comprehensive conclusions and recommendations. The documentation must be of a sufficient professional level to stand as an artifact for reuse as part of the security architecture
Experience evaluating the adequacy and existence of OT security controls as they conform to security architectures
Experience having properly documented evidence of security architecting, design, and cybersecurity activities sufficient for a third-party reviewer to arrive at the conclusions reached in the work
3+ years of previous experience effectively performing security control implementation on networks, servers, and systems and/or conducting vulnerability assessments
One or more of the following networking or security certifications is required: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or Certified Information Security Manager (CISM)
5+ years of experience performing security control evaluation and testing
8+ years of experience with North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) regulatory standards and requirements
10+ years of experience with the Risk Management Framework and the 800 series of National Institute of Standards & Technology (NIST) Special Publications, including 800-37, 800-39, 800-53, 800-53A, 800-82, and 800-115
Valid U.S. Driver's License is required

Preferred

Expert knowledge of FISMA controls is preferred
Expert knowledge of NERC CIP standards is preferred
Understanding and experience in federal electric utility operations and how they interrelate with FISMA and NERC CIP standards and compliance is preferred

Benefits

Paid holidays: 11
PTO: Starting at 10 days
Sick Leave: Up to 56 hours per year (prorated based on start date)
EAP: Employee Assistance Program
Benefit Options Available: Medical, Dental, Vision, FSA, DCA, LPFSA, HSA, Group Life/AD&D, Voluntary Life/AD&D, Voluntary Short-Term Disability, Voluntary Long-Term Disability, Voluntary Critical Illness, Voluntary Accident, Hospital Indemnity, 401k (immediately eligible for employee and employer contributions - employer match up to 4%)
Other benefits include the following: Calm App, LifeBalance Discount Program

Company

ACS Professional Staffing

twittertwittertwitter
company-logo
ACS Professional Staffing is a leading professional staffing and consulting firm specialize in contract, temp-to-perm.
dateFounded in 2001
location
Vancouver, Washington, USA
people-size201-500 employees
web-link
https://www.acsprostaffing.com/

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
John Alt
CEO
linkedin
Company data provided by crunchbase