Information Systems Security Engineer (ISSE)

As an Information Systems Security Engineer with MTSI you will be in a critical role responsible for designing, implementing, and maintaining the security posture of our organization's information systems. You will play a key role in protecting our data and infrastructure from unauthorized access, modification, or destruction. You will work closely with IT teams, developers, and other stakeholders to ensure that security is integrated into all phases of capability development and operational environment. This position will be located at Wright-Patterson AFB.

You’ll be a great fit for this role if: (SOFT SKILLS)

• Have a strong understanding of security principles, technologies, and best practices, as well as the ability to communicate effectively with both technical and non-technical audiences.
• Paying attention to detail and providing excellent customer service in a professional environment is a skill you excel at.
• You are passionate about continuous learning and growth, and you seek opportunities to challenge yourself.
• You are driven to make a meaningful impact through your work.
  
  

Responsibilities

Duties to be independently executed include but are not limited to:

• Develop and implement security architectures and designs for both new and existing systems, ensuring alignment with industry best practices, adherence to relevant regulatory requirements, and compliance with established organizational security policies.
• Conduct security risk assessments and vulnerability analyses to proactively identify potential weaknesses and vulnerabilities within systems, and develop and recommend effective mitigation strategies to address these identified risks.
• Evaluate and carefully select appropriate security technologies and solutions to effectively address specific and evolving security needs; create and maintain comprehensive security documentation, including detailed system security plans (SSPs), thorough security control assessments (SCAs), and comprehensive security test and evaluation (ST&E) reports.
• Configure and maintain a wide range of critical security tools and technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), security information and event management (SIEM) systems, advanced endpoint detection and response (EDR) solutions, and vulnerability scanners, ensuring optimal performance and effectiveness.
• Implement and rigorously enforce security policies and procedures across all systems and networks to ensure consistent security posture; collaborate closely with IT teams to seamlessly integrate security controls into capability development systems, experiments, and prototypes, encompassing requirements gathering, design, testing, and deployment; and automate security tasks and processes to improve overall efficiency and significantly reduce the risk of human error.
• Continuously monitor security logs and alerts to proactively identify potential security incidents and breaches, enabling swift and effective response actions.
• Thoroughly investigate security incidents and breaches to determine root causes and scope of impact, and develop and implement comprehensive and effective remediation plans to address the identified issues.
• Actively participate in incident response activities, including containment, eradication, and recovery efforts, to minimize the impact of security incidents; and develop and maintain robust incident response plans and procedures to ensure coordinated and effective responses.
• Ensure that all systems and applications strictly comply with relevant security standards and regulations, such as NIST, ISO 27001, HIPAA, PCI DSS, and GDPR, maintaining a strong security posture and mitigating compliance risks.
• Develop and maintain engaging security awareness training programs for employees to promote a security-conscious culture; collaborate closely with IT teams, developers, and other stakeholders to seamlessly integrate security into all aspects of the organization's operations; effectively communicate security risks and issues to management and other stakeholders in a clear and concise manner; provide expert security guidance and support to other IT staff; actively participate in security meetings and relevant industry conferences; and mentor junior security staff to foster their professional development.
  
  

Qualifications Required

• 8 years experience in information security engineering or a related role
• Strong understanding of security principles, technologies, and best practices.
• Experience with security tools and technologies, such as firewalls, IDS/IPS, SIEM, EDR, and vulnerability scanners.
• Knowledge of network security protocols and technologies, such as TCP/IP, DNS, and VPNs.
• Experience with cloud security concepts and technologies (e.g., AWS, Azure, GCP).
• Familiarity with scripting languages (e.g., Python, PowerShell) for automation.
• Experience with operating systems (e.g., Windows, Linux) and virtualization technologies.
• Knowledge of cryptography and encryption technologies.
  
  

Education

• Master’s degree in Computer Science, Information Systems, Cybersecurity, or a related field. 8 additional years of relevant experience may be substituted for master’s degree.
  
  

Even Better If You Have These Desired Skills

• Preferred Certifications
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Ethical Hacker (CEH)
• Security
• Global Information Assurance Certification (GIAC)
• Experience with penetration testing and vulnerability assessment.
• Experience with DevSecOps practices.
• Experience with security automation and orchestration tools.
• Creative problem-solving, analytical skills, agile under pressure, and impeccable business judgment.
• Ability to establish priorities, work independently, successfully execute multiple projects, and proceed with objectives with minimal supervision.
• Excellent interpersonal and relationship building skills across several diverse technical and non-technical groups.
  
  

Clearance Requirements

• Must possess an active DoD TS/SCI with in-scope SSBI and SAP eligibility.
• Please note: U.S. Citizenship is required.
  
  

Perks & Benefits

Vacation

New Hires Accrue 20 days of PTO and 10 Holidays per Year

Health Insurance

Zero Deductible Health Plans

Flexible Schedules

Flex Schedules

Professional Development

Up to $10,000 Annual Education/Training Reimbursement

ESOP

Funded Stock Ownership Plan

401k Match

6% 401k Match Immediate Vesting

Bonus Program

Semi-Annual Bonus Opportunity

Mentorship

Career Mentorship Programs

Why is MTSI known as a Great Place to Work?

• Interesting Work: Our co-workers support some of the most important and critical programs to our national defense and security.
• Values: Our first core value is that employees come first. We challenge our co-workers to provide the highest level of support and service, and reward them with some of the best benefits in the industry.
• 100% Employee Owned: We have a stake in each other's success, and the success of our customers. It's also nice to know what's going on across the company; we have company wide town-hall meetings three times a year.
• Great Benefits - Most Full-Time Staff Are Eligible for:
• Starting PTO accrual of 20 days PTO/year 10 holidays/year
• Flexible schedules
• 6% 401k match with immediate vesting up to $9k annually
• Semi-annual bonus eligibility (July and December)
• Company funded Employee Stock Ownership Plan (ESOP) - a separate qualified retirement account
• Up to $10,000 in annual educational reimbursement
• Other company funded benefits, like life and disability insurance
• Optional zero deductible Blue Cross/Blue Shield health insurance plan
• Track Record of Success: We have grown every year since our founding in 1993.
  

Modern Technology Solutions, Inc. (MTSI) is a 100% employee-owned engineering services and solutions company that provides high-demand technical expertise in Digital Transformation, Modeling and Simulation, Rapid Capability Development, Test and Evaluation, Artificial Intelligence, Autonomy, Cybersecurity and Mission Assurance

MTSI delivers capabilities to solve problems of global importance. Founded in 1993, MTSI today has employees at over 20 offices and field sites worldwide.

For more information about MTSI, please visit www.mtsi-va.com

EEO Statement

MTSI embraces nine core values including our first core value of Employees come first. Consistent with our Core Values, we are committed to Equal Opportunity, making decisions without regard to race, color, religion, sex, national origin, age, military/veteran status, disability, or any other characteristics protected by applicable law. MTSI is committed to Equal Employment Opportunity and providing reasonable accommodations to applicants and employees with physical and/or mental disabilities.