What are the responsibilities and job description for the Information System Security Engineer position at Thunderbolt Logistics?
Thunderbolt Solutions is a small, flexible company where are our motto ‘find a way or make one’ and it permeates every facet of our business. When faced with a technical challenge, we aim to exceed expectations by developing and fielding innovative solutions for defense and commercial markets in a manner unencumbered by bureaucracy. Thunderbolt Solutions operates in an environment that fosters transparency, innovation, collaboration, inclusion and a learning mindset focused on solutions that enhance employee engagement.
Summary:
The ISSE is responsible for engineering, implementing, and maintaining secure system architectures and controls to support NSWCPD’s mission. This includes guiding information assurance efforts throughout the system lifecycle (design, development, integration, operation, sustainment, decommissioning), ensuring compliance with DoD/Navy/NAVSEA cyber and information security policy, executing full RMF (Risk Management Framework) processes, and providing documentation and guidance to stakeholders (system owners, engineers, accreditation authorities etc.).
Job Responsibilities:
- Manage system security throughout its lifecycle
- Create and maintain security plans and reports
- Apply and monitor cybersecurity controls
- Conduct vulnerability scans and fix issues
- Work with teams to ensure secure system design
- Track compliance and support audits
- Use security tools to monitor system health
- Update leadership on risks and security status
Qualifications
- Minimum Education: Bachelor or Master's degree in computer science, information technology, or an equivalent STEM l degree from an accredited college or university
- Minimum Experience: Seven (7) years professional experience capturing and refining information security operational and security requirements and ensuring those requirements are properly addressed through purposeful development, and configuration, and implementing security controls, configuration changes, software/hardware updates/patches, vulnerability scanning, and securing configurations.
- Minimum Certification Requirement: This position requires one of the following certifications:
- CASP CE
- CCNP Security
- CISA
- CISSP (or Associate)
- GCED
- GCIH
- CCSP
- This Position requires a SECRET DOD clearance or the ability to obtain a clearance to execute the contract.
