Information Systems Solutions (ISS) is looking for a mid-level ISSE supporting the Office of Naval Intelligence. The Information Systems Security Engineer (ISSE) is responsible for engineering, implementing, and maintaining security solutions across information systems and networks. This role collaborates closely with system engineers, architects, cybersecurity analysts, developers, and program management to ensure systems are designed, built, and maintained in accordance with security best practices and applicable compliance frameworks (e.g., RMF, NIST, DoD, ISO).

 This role is 100% onsite. 

Specific duties include, but are not limited to the following:
• Develop and maintain system security artifacts, including System Security Plans (SSP), Security Assessment Reports (SAR), POA&Ms, and STIG compliance documentation.
• Apply NAVINTEL ICD 503 Risk Management Framework (RMF) policies and DoD/Navy cybersecurity directives to system design and implementation.
• Collaborate with ISSOs, ISSMs, program managers, and system engineers to ensure security controls are correctly implemented.
• Support system categorization, control selection, and continuous monitoring per NIST SP 800-53 and RMF.
• Provide guidance on secure architecture, encryption, authentication, network security, and system hardening.
• Maintain familiarity with cloud environments (AWS, Azure), enterprise networks, and operating systems (Windows, Linux).
• Familiar with GRC tools such as eMASS and Xacta.

• Ability to work with key stakeholders to resolve vulnerabilities and answer STIG checklists.

Why Work For ISS?
At ISS we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career.

Requirements:

Clearance Level
TS/SCI clearance

Certifications (IAT Level III)
One of the following:

· CASP+

· CCNP Security

· CISA

· CISSP (or Associate)

· GCED

· GCIH

Required Skills
• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related field (or equivalent experience).
• 3–6 years of experience in cybersecurity or information systems security engineering.
• Knowledge of NAVINTEL ICD 503 RMF Implementation Policies and DoD/Navy cybersecurity directives.
• Understanding of ISSO responsibilities per SECNAV M-5239.2.
• Experience with NIST SP 800-53, RMF, DoD STIGs, and secure system architecture principles.
• Familiarity with network architectures, operating systems, and cloud platforms.
• Strong understanding of encryption, authentication, network security, and secure design patterns.

Preferred Qualifications
• Hands-on experience with DevSecOps, CI/CD pipelines, or Infrastructure as Code (Terraform, Ansible).
• Knowledge of containerization (Docker, Kubernetes) and microservices security best practices.
• Experience with enterprise security solutions (SIEM, endpoint protection, IAM tools).
• Prior work on Navy or IC programs requiring TS/SCI clearance.
• Strong communication and documentation skills, capable of briefing leadership and technical teams.

• Comprehension of key virtualization concepts.

• Familiar with Cloud Computing, architecture and design/engineering concepts.

• Familiar with the use of various code repositories and their function such as Github/Gitlab.

• Understanding of the various distributions of LINUX.

Information Systems Solutions (ISS) is looking for a mid-level ISSE supporting the Office of Naval Intelligence. The Information Systems Security Engineer (ISSE) is responsible for engineering, implementing, and maintaining security solutions across information systems and networks. This role collaborates closely with system engineers, architects, cybersecurity analysts, developers, and program management to ensure systems are designed, built, and maintained in accordance with security best practices and applicable compliance frameworks (e.g., RMF, NIST, DoD, ISO).
 

 This role is 100% onsite. 

 Specific duties include, but are not limited to the following:
• Develop and maintain system security artifacts, including System Security Plans (SSP), Security Assessment Reports (SAR), POA&Ms, and STIG compliance documentation.
• Apply NAVINTEL ICD 503 Risk Management Framework (RMF) policies and DoD/Navy cybersecurity directives to system design and implementation.
• Collaborate with ISSOs, ISSMs, program managers, and system engineers to ensure security controls are correctly implemented.
• Support system categorization, control selection, and continuous monitoring per NIST SP 800-53 and RMF.
• Provide guidance on secure architecture, encryption, authentication, network security, and system hardening.
• Maintain familiarity with cloud environments (AWS, Azure), enterprise networks, and operating systems (Windows, Linux).
• Familiar with GRC tools such as eMASS and Xacta.

• Ability to work with key stakeholders to resolve vulnerabilities and answer STIG checklists. 

Why Work For ISS?
At ISS we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career. 

Requirements:

Clearance Level
TS/SCI clearance
 

Certifications (IAT Level III)
One of the following:

· CASP+ 

· CCNP Security 

· CISA 

· CISSP (or Associate) 

· GCED 

· GCIH

Required Skills
• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related field (or equivalent experience).
• 3–6 years of experience in cybersecurity or information systems security engineering.
• Knowledge of NAVINTEL ICD 503 RMF Implementation Policies and DoD/Navy cybersecurity directives.
• Understanding of ISSO responsibilities per SECNAV M-5239.2.
• Experience with NIST SP 800-53, RMF, DoD STIGs, and secure system architecture principles.
• Familiarity with network architectures, operating systems, and cloud platforms.
• Strong understanding of encryption, authentication, network security, and secure design patterns.

 

Preferred Qualifications
• Hands-on experience with DevSecOps, CI/CD pipelines, or Infrastructure as Code (Terraform, Ansible).
• Knowledge of containerization (Docker, Kubernetes) and microservices security best practices.
• Experience with enterprise security solutions (SIEM, endpoint protection, IAM tools).
• Prior work on Navy or IC programs requiring TS/SCI clearance.
• Strong communication and documentation skills, capable of briefing leadership and technical teams.

• Comprehension of key virtualization concepts.

• Familiar with Cloud Computing, architecture and design/engineering concepts.

• Familiar with the use of various code repositories and their function such as Github/Gitlab.

• Understanding of the various distributions of LINUX.

Information Systems Solutions (ISS) is looking for a candidate to provide Cloud Engineering support for a US Government Customer tasked with designing, securing, and deploying a Cloud based networked environment on the Research, Development, Test, and Evaluation (RDT&E) network. The selected candidate will be part of a small team working with other government engineers to build out and deploy this new concept.

Specific duties include but are not limited to the following:

· Cloud Engineering Team members tasked with designing, securing, and deploying solutions to a single or multi-cloud environment composed of AWS.

· Serverless Automation: Build and manage scalable AWS Lambda serverless applications by defining functions, IAM roles, and triggers directly inside AWS CloudFormation templates using Infrastructure as Code (IaC) principles.

· Containerization & Deployment: Proven expertise in Docker packaging and managing enterprise cluster architecture using Kubernetes, Red Hat OpenShift, AWS Elastic Kubernetes service and AWS Elastic Container Service within automated deployment pipelines.

· Cloud Automation: Develop and maintain automation scripts, configuration playbooks, and serialization files in an AWS environment using Python, Bash, Ansible, YAML, JSON, and JavaScript.

· Coordinate with other teams to deliver solutions in a matrix organization.

· Work well under deadlines in a changing environment and complete multiple projects effectively and concurrently. 

· Regularly interact with all levels of management to present and discuss audit results and obtain gap remediation status. 

· Familiarity with RMF Cybersecurity activities including DISA STIGS, ACAS, and SCAP compliance tools.

Why Work For ISS? 

At ISS we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career. 

Requirements:

Clearance Level 

· Secret 

 Certifications (IAT Level II) 

One of the following: 

· Security+ CE 

· GIAC Security Essentials Certification (GSEC) 

· Security Certified Network Professional (SCNP) 

· System Security Certified Practitioner (SSCP) 

and: 

· AWS Certified Developer – Associate Certification

and one of the following (preferred): 

· Linux + 

· LPIC-2 Advanced Level Linux Professional 

· LPIC-3 Senior Level Linux Professional 

· RHCE   Red Hat Certified Engineer 

· RHCSA Red Hat Certified System Administrator 

· RHCDS Red Hat Certified Data Center Specialist 

· Microsoft Certified Systems Administrator 

· Microsoft Certified Solutions Expert 

· Configuring Windows 10 (70-697 or equivalent) 

Required Skills 

· 3+ Experience with AWS

· 3+ Years of Experience with Linux 

· Experience with Red Hat OpenShift environment 

· Experience with Windows Systems 

Desired Skills 

· 3+ Years of Experience with Windows Systems 

· Endpoint Security Solutions ESS Administrator ePO ACAS 201 Certification

· Endpoint Security Solutions ESS Advanced administrator ePO ACAS 301 Certification

· Microsoft Defender for Endpoint

Information Systems Solutions (ISS) is looking for an IS/IT Subject Matter Expert Level V to support the JS J7 Joint Training DevSecOps pipeline core infrastructure and data center in Suffolk, VA. The selected candidate will be responsible for supporting the Deputy Directorate, Joint Training (DDJT) for Continuous Network Defense (CND) cybersecurity engineering.

This role is 100% onsite.

Specific duties include but are not limited to the following:

· Serve as the primary Subject Matter Expert (SME) for all aspects of the Continuous Network Defense cybersecurity tools in accordance with all applicable DoD Instructions (DoDI), policies and regulations.

· Utilize Tenable and Nessus to perform regularly scheduled discovery and vulnerability scans, provide analysis of results, and development mitigation strategies to reduce overall risk surface.

· Manage Trellix ePO and deploy endpoint products such as ENS, PA, DLP, etc., to implement and enforce endpoint security policies in accordance with response to and mitigation of potential threats.

· Implementation of ForeScout policies for Comply-To-Connect (C2C) initiative, to ensure continuous compliance and quarantining of unauthorized, noncompliant devices.

· Monitoring of Cortex Xpanse to identify and assess external-facing assets and respond to alerts with the corrective action to mitigate the findings.

· Ensure continuous data flow is active for the Continuous Monitoring and Risk Scoring (CMRS) DoD system, including endpoint security data (Trellix), vulnerability and flaw remediation (Tenable), and security compliance data (ForeScout).

· Configuration, modification and deployment of security policies on Cisco Firepower Management Console (FMC) to ensure intrusion prevention (IPS) is enforced at the network security level.

· Utilize and validate DNS and DHCP data within Infoblox, monitoring for anomalous records, unauthorized entries, and removal of duplicate records.

· Implementation of AD Audit Engine to detect and investigate anomalous, malicious or malformed activity within Active Directory, to identify potential insider threats and/or compromised accounts.

· Conduct threat hunts and active/passive reconnaissance using network traffic analysis, heuristic analysis, and cybersecurity data analysis to identify and mitigate indicators of compromise (IoC), misconfigured systems, and advanced persistent threat actors (APTs).

Why Work For ISS?

At ISS we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career.

Requirements:

Clearance Level

Secret

Certifications (IAT Level II)

One of the following:

· CySA+ 

· Security+ 

· CCNA – Security 

· GICSP 

· GSEC 

· SSCP

Required Skills and Experience

· A master’s of Cybersecurity or related degree, or 10 years of experience in cybersecurity engineering focused on Government-approved cybersecurity tools.

· At least 5 years of experience related to DoD cybersecurity vulnerability detection and response utilizing tools within FISMA compliance.

· Experience with big data analytical tools such as Elasticsearch and Splunk.

Information Systems Solutions (ISS) is looking for an AV/Infrastructure IS/IT Specialist Level 1 to support the JS J7 Joint Training DevSecOps pipeline core infrastructure and data center in Suffolk, VA. The selected candidate will be responsible for supporting the Deputy Directorate, Joint Training (DDJT). The selected candidate will be responsible for installing, terminating, and testing physical network infrastructure. This role focuses heavily on fiber optic and copper cabling within secure government facilities.

This role is 100% onsite.

Specific duties include but are not limited to the following:

· Cable Installation: Pull, route, and dress Cat6, Cat6A, and fiber optic cables.

· Termination: Terminate RJ-45 jacks, patch panels, and fiber connectors (LC, SC, ST).

· Testing: Use Fluke meters to test, certify, and troubleshoot physical layer links.

· Containment: Install cable trays, ladder racks, conduits, and surface raceways.

· Documentation: Label all cables and ports according to government standards.

Work Environment

· Government administrative buildings, data centers, and secure military sites.

· Requires frequent bending, crawling, and standing for long periods.

Why Work For ISS?

At ISS we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career.

Requirements:

Clearance Level

Secret clearance

Certification

· BICSI Installer 1 or Installer 2 (Copper/ Fiber) – Preferred

Required Skills

· High School Diploma or equivalent technical school certification.

· 0 to 2 years in network cabling or telecommunications.

· Proven ability to punch down copper and splice/terminate fiber.

· Ability to lift up to 50 lbs, climb ladders, and work in tight spaces.

The Senior Systems Engineer will support a Navy enterprise command-and-control environment in Charleston, SC. This position serves as a senior technical authority responsible for the design, engineering, hardening, and lifecycle management of enterprise Windows environments within secure DoD networks. The role centers on Windows Server ecosystems, identity and access management, system hardening, and compliance enforcement, with responsibility for maintaining highly available, secure, and scalable infrastructure. The engineer will lead system-level vulnerability remediation efforts, RMF compliance activities, and enforcement of DISA STIG baselines across enterprise environments. This is a senior, hands-on engineering role requiring deep expertise in Windows internals, Active Directory design, Group Policy architecture, and enterprise cybersecurity practices. The candidate must independently resolve complex system issues, guide technical decisions, and contribute to architecture and engineering strategies across the environment. 

This role is 100% onsite. 

Specific duties include but are not limited to the following: 

• Engineer and administer enterprise Windows Server environments (2016/2019/2022) within classified and DoD networks
• Architect, manage, and optimize Active Directory Domain Services (AD DS), including forests, domains, trust relationships, and replication topology
• Design and enforce Group Policy (GPO) strategy and configuration baselines across enterprise systems
• Implement and maintain Windows security hardening in accordance with DISA STIGs and DoD cybersecurity policies
• Serve as the technical lead for vulnerability assessment and remediation, leveraging ACAS scan results and system-level mitigation strategies
• Lead engineering efforts for system compliance, auditing, and continuous monitoring under RMF frameworks
• Develop advanced automation using PowerShell (primary) to support configuration enforcement, auditing, and remediation
• Support and optimize virtualized infrastructure (VMware vSphere/ESXi/vCenter) hosting Windows workloads
• Provide engineering support for Windows-based VDI environments, focusing on system performance, stability, and security
• Implement and manage identity, authentication, and access control mechanisms, including least privilege and privileged access strategies
• Troubleshoot and resolve complex Windows OS, AD, and infrastructure-level issues across lab and production environments
• Participate in architecture reviews, engineering boards, and configuration control processes
• Produce and maintain engineering documentation, including system designs, implementation plans, and compliance artifacts
• Mentor junior engineers and provide technical leadership within a multi-disciplinary team environment

Why Work For ISS?

At ISS we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career.

Requirements:

Clearance Level

TS/SCI (desired)

OR

An active SECRET clearance with a current SSBI/T5 investigation

AND 

Candidates must be a U.S. citizen 

Certifications (IAT Level II)

One of the following: 

· CompTIA CySA+

· CompTIA Security+ 

· CCNA – Security 

· GICSP

· GSEC 

· SSCP

And
• Operating System Certificate (e.g., Linux+, Windows Server, CCNA, etc.).

Required Skills
• Seven (7) years of experience in systems engineering and support for IT and C4I systems.
• bachelor’s or master’s degree desired in engineering (e.g., network, electrical, mechanical, systems, etc.).
 

Desired Skills
• Advanced expertise in Active Directory architecture (multi-domain/forest design, replication, disaster recovery strategies)
• Deep understanding of Windows Server internals and enterprise infrastructure design
• Strong PowerShell development skills (modular scripting, automation frameworks, secure coding practices)
• Experience with hybrid identity solutions (Azure AD / Entra ID)
• Proven experience leading STIG implementation and compliance at scale
• Experience supporting classified DoD environments with privileged administrative access
• Familiarity with infrastructure-as-code concepts (desired, not required)
• Demonstrated ability to lead engineering efforts and influence architecture decisions 

Information Systems Solutions, Inc, has an immediate opening for an Information System Security Specialist III to join our rapidly growing team. The Information System Security Specialist III will provide cyber services and solutions, technical support, and management support for NIWC Atlantic Polar Programs (NPP).

Traveling to onsite locations in Antarctica is possible. 

Specific duties include but are not limited to the following:

· Maintaining security policies and standards.

· Ensuring compliance throughout the organization.

· Provides Risk Management Framework, circuit/system accreditation, and certification policy services.

· Participate in the development or modification of the computer environment IA security program plans and requirements.

· Helping develop procedures to ensure system users are aware of their IA responsibilities before granting access to DoD information systems

· Recognize possible security violations and take appropriate action to report the incident, as required.

· Ensure IA requirements are integrated into the Continuity of Operations Plan (COOP) for that system or DoD Component

· Ensure IA security requirements are appropriately identified in computer environment operation procedures and collect and maintain data needed to meet system IA reporting requirements.

· Evaluates security solutions

· Provide oversight for the Computer Network Defense-Service Provider (CNDSP).

· Work with system owners to close IAVMs/ICVMs and open plan of action and milestones (POA&Ms) in a rapid fashion, in accordance with DoD. instructions/directives.

Why Work For ISS?
At ISS we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career.

Requirements:

Clearance Level 

None

Certification (IAT Level II) 

One of the following: 

· CySA+ 

· Security+ CE  

· CCNA – Security 

· GICSP 

· GSEC

· SSCP

Required Skills

• Five (5) years with a bachelor’s degree or seven (7) years with HS/GED of practical experience demonstrating competency in Cybersecurity, Engineering, Test & Evaluation (T&E), or Assessment & Authorization (A&A)/Certification & Accreditation (C&A) related fields.
• Working knowledge of the Risk Management Framework (RMF) process.
• Experience with DISA Enterprise Mission Assurance Support Service (eMASS) and Assured Compliance Assessment Solution (ACAS).
• Capable of evaluating security solutions to ensure they meet security requirements for processing up to classified information and supervising and/or maintaining the operational security posture for an information system or program.
• Experience assisting with or developing system security policies and ensuring compliance with change management and configuration control processes.
• Experience conducting Security Control Assessments (SCAs), including stakeholder interviews, security control testing, evidence review and validation, and assessment documentation.
• Experience developing and maintaining Security Assessment Plans (SAPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms).
• Demonstrated leadership ability to guide assessment teams, coordinate with system owners and stakeholders, resolve assessment issues, and ensure assessment activities remain on schedule.
• Ability to interpret and apply security policies, system boundaries, control inheritance, and shared responsibility models within complex enterprise environments.
• Experience supporting Authorization to Operate (ATO) efforts and validating compliance with applicable cybersecurity and regulatory requirements.

Desired Skills

· Ability to organize, prioritize and meet deadlines

· Capable of conveying complex information in a simplistic manner

· Strong critical thinking and problem-solving skills 

 Why Work For ISS?

At Information Systems Solutions (ISS), we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career.

Requirements:

Please complete the following questionnaire for consideration. 

Information Systems Solutions (ISS) is seeking a Senior Data Security Engineer to support the mission of NETCOM. In this role, you will provide critical sustainment support for the Army’s network vulnerability assessment and security operations, helping safeguard the Army DoDIN and associated enterprise networks. Your work will directly contribute to strengthening cybersecurity readiness and protecting mission-critical infrastructure.

This role is 100% onsite.

Key Responsibilities

· Support the design, configuration, integration, and implementation of the Tenable Nessus product to protect against network vulnerabilities, directly impacting the security and operational readiness of the Army’s global network.

· Collaborate with government and other technical teams to assess requirements and integrate ACAS capabilities with other network technologies such as OOBM/SAAG, Big Data Analytics, and JRSS/JMN.

· Drive the development and engineering of secure, integrated solutions, resolving complex technical challenges to enhance the overall security posture of the Army’s enterprise network.

· Utilize your expertise in Windows, Linux, and MAC OS, Active Directory, virtualization (VMware/Microsoft), and Tenable Nessus products to maintain and secure the network infrastructure.

Why Work For ISS?

At ISS we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career.

Requirements:

Clearance

· TS clearance 

Certification (IAT Level III)

One of the following: 

· CASP+ 

· CCNP Security 

· CISA 

· CISSP (or Associate) 

· GCED

· GCIH

And 

Computing Environment certification (RHCSA, Linux or MCSA)

Qualifications 

· Bachelor’s degree in IT, Computer Science, Engineering, Business, or related field.

· At least 5+ years of related experience.

· Technical skills: Windows Server/Desktop, Linux, MAC OS, Active Directory, Network Management, Microsoft/VMware Virtualization, Red Hat Linux, Information Assurance, Data Networking, and experience with vulnerability scanning tools, specifically Tenable Nessus and ACAS.