Information Systems Security Engineer (ISSE), SME - Cloud

Tyto Athene is seeking an Information Systems Security Engineer (ISSE), SME - Cloud to support a federal customer on an information security program to serve as an ISSE and Lead for Cloud Technologies.

Responsibilities

• Lead, mentor, and supervise a team of security professionals responsible for the end-to-end implementation of the RMF lifecycle for customer's IT systems.
• Oversee and coordinate activities within the Prepare step, ensuring roles, responsibilities, and risk management strategies are clearly defined and maintained.
• Guide system categorization efforts to ensure all information systems are appropriately classified based on mission/business impact and regulatory requirements.
• Direct the selection, tailoring, and documentation of security controls aligned with system categorizations, Bureau risk appetite, and compliance requirements.
• Oversee the implementation of technical, operational, and management controls throughout system and application lifecycles, with a particular focus on quality and completeness of all deliverables.
• Ensure comprehensive security control assessments are planned, executed, and documented to validate the effectiveness of implemented safeguards.
• Prepare risk management documentation for system authorization and executive decision making.
• Direct ongoing monitoring and continuous assessment activities, collecting metrics to adjust security strategies and ensure sustained compliance.
• Foster a culture of security awareness, providing technical guidance and training to both team members and stakeholders.
• Maintain up-to-date knowledge of RMF, NIST guidance, and industry best practices in support of continuous process improvement.
  
  
  

Required

• 15 years of experience in IT security, with a focus on federal IT compliance.
• 10 years of experience in secure design, analysis, and test of information security systems and products.
• 10 years of experience applying methods, standards and approaches for ensuring the baseline security safeguards are appropriately implemented and documented.
• 10 years of experience creating and updating security test plans for detecting and mitigating risk to information systems.
• Experience in cybersecurity engineering, including encryption, multi-factor authentication, centralized logging, and other key risk management capabilities.
• One or both certifications CISSP; CEH
• Experience supporting programs that operate hundreds of low-, moderate-, and high-impact on-premises and cloud (Azure/AWS) systems across unclassified and classified environments.
• Proven ability to communicate effectively with senior leadership and across diverse teams, acting as both a leader and collaborator.
  
  
  

Desired

• Bachelor’s and/or advanced degree in computer science, business management, or IT related discipline is preferred.
• Familiarity with the use and operation of security tools including Tenable Nessus and/or Security Center, Splunk, IBM Guardium, HP WebInspect, Network Mapper (NMAP), and/or similar applications.
• At least one Security certification from AWS, Azure, or GCP
• AWS Certified Security - Specialty
• (ISC)2 Certified Cloud Security Professional (CCSP)
• AWS Certified Solutions Architect - Associate
• AZ-500 Microsoft Certified Azure Security Engineer Associate
• Google - Professional Cloud Security Engineer
• Experience with FBI, DOJ, DHS, or similar federal agencies
  
  

Clearance Active Top Secret clearance with SCI eligibility

Compensation

• Compensation is unique to each candidate and relative to the skills and experience they bring to the position. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.
  
  
  

Benefits

• Highlights of our benefits include Health/Dental/Vision, 401(k) match, Paid Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and parental leave.
  
  
  

Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation that drives measurable success. Our expertise spans four core technology domains—Network Modernization, Hybrid Cloud, Cybersecurity, and Enterprise IT—empowering our clients with cutting-edge solutions tailored to their evolving needs. With over 50 years of experience, Tyto Athene proudly support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide.

At Tyto Athene, we believe that success starts with our people. We foster a collaborative, innovative, and mission-driven environment where every team member plays a critical role in shaping the future of technology. Are you ready to join #TeamTyto?

Tyto Athene, LLC is an Equal Opportunity Employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, [sexual orientation, gender identity,] national origin, disability, status as a protected veteran, or any characteristic protected by applicable law.