Information Security Engineer

Get AI-powered advice on this job and more exclusive features.

This range is provided by Purple Jay (SDVOSB). Your actual pay will be based on your skills and experience - talk with your recruiter to learn more.

Base pay range $110,000.00/yr - $125,000.00/yr Direct message the job poster from Purple Jay (SDVOSB) Purple Jay is a veteran-owned IT and InfoSec company that guides government agencies and private organizations into the right balance of business productivity and implements security measures to help maximize their outcomes and achieve their mission.

We believe that effective cybersecurity solutions must go beyond simply protecting data and systems - they must align with the mission to enable and empower progress.

Our teams are built to provide cross-domain services with highly skilled and trained personnel supported by cross-matrix, agile teams and our proprietary digital solutions that have a track record of success.

Our positively charged approach intends to exceed client's minimum requirements, reduce client and organizational risk, and maximize the return on investment.

have a curious and intellectual mind who are inclined to ask why . use creative thinking and adaptive decision-making to solve problems.

value their contribution and the contribution of others on the team.

are passionate about learning and developing skills to overcome challenges.

look to leverage their knowledge or experience to advance within the InfoSec Industry.

can connect with people of diverse backgrounds and communication styles, through empathy and clear verbal, visual, and written communication.

ABOUT THE INFORMATION SECURITY ENGINEER: ROLE OVERVIEW: We are looking for someone with strong information system security engineering skills with demonstrated project management experience, who want to use their knowledge and skill set to support and enable enterprise mission.

A current Public Trust Clearance is preferred and eligibility for a clearance is a MUST . This is a self-starter position that requires the ability to integrate strategic and innovative thinking while working with our team members and clients daily.

The primary focus is on the delivery of InfoSec outcomes that improve organizational security posture, reducing risk and threat landscapes, ensuring system compliance, and enhance process efficiency.

Through the technical assessment of information systems, InfoSec Engineers are expected to provide strategic guidance on increasing control efficacy, developing and improving security policy and procedures, streamlining compliance activities, and risk analysis that consider environmental factors.

They will provide tactical direction and support on areas such as vulnerability management, risk impact and likelihood, organizational policies/procedures, ongoing authorization, and emerging requirements.

RESPONSIBILITIES: Purple Jay teams are cross-functional and cross-matrixed to aid in the effective delivery of services and digital solutions.

This role responsibilities include but are not limited to: Designs, develops, implements and maintains: - security measures to protect an organization's systems and networks.

- security products and tools (e.g., firewalls, intrusion detection and prevention systems, and anti-virus software). - security policies that ensure compliance to regulatory requirements - process and procedures that enhance and optimize execution and outcomes - mechanisms and digital solutions that support client initiatives and address expectations Identify, assess, and monitor: - security risks and threats for enterprise and system boundaries.

- system's ATO package hygiene and applicable artifacts to support RMF process - system issues and gaps providing appropriate alternatives and solution recommendations Develop, report, and evaluate: - strategies to track, remediate, and mitigate risks.

New security technologies and tools Process and procedures that support emerging requirements Monitor and analyze information security data sources in support of: -security incidents and events investigation and response.

-continuous monitoring of system risk, authorization status, and security KPI thresholds Collaborate with all stakeholders and teams to ensure security control efficacy.

Conducts analysis of work plan completeness, prepares status reports, and supports quality control practices.

Performs analyses of client issues, assesses appropriate alternatives, and recommends solutions.

TECHNICAL SKILLS Knowledge of information security principles, such as confidentiality, integrity, availability, and cybersecurity regulations.

Knowledge of security compliance frameworks and regulations, such as NIST SP 800-53, ISO 27001, PCI DSS, and SOC 2.

Knowledge of cloud security concepts and technologies, such as virtualization, containerization, and software-defined networking (SDN). Knowledge of security tools and technologies such as firewalls, intrusion detection and prevention systems, vulnerability scanners, and encryption technologies.

Knowledge and experience with network and system administration, including knowledge of operating systems, network protocols, and network security.

Knowledge of network and system security, including TCP/IP, routers, switches, and server operating systems (e.g., Linux, Windows). Knowledge of incident response and disaster recovery planning, including developing and implementing response plans and procedures.

Knowledge of threat intelligence and threat hunting methodologies, including collecting and analyzing data to identify emerging threats and trends.

Ability to identify and assess security risks, develop risk management strategies, and implement risk mitigation plans.

Ability to design, implement, and manage security controls and countermeasures to protect against security risks and threats.

Ability to analyze security incidents and data to identify patterns and trends and improve security controls.

Ability to design and implement security architectures and solutions that meet business and compliance requirements.

Ability to develop and implement security policies, procedures, and standards to ensure compliance with regulations and best practices.

Skill in programming and scripting languages such as Python, PowerShell, and Bash is a plus PROFESSIONAL SKILLS Demonstrated excellence in collaboration, facilitation, planning, and negotiation skills that influence colleagues to the best outcomes.

Strong sense of personal accountability regarding decision-making and coordinating across different project and department teams Demonstrated excellence in time management and organizational skills.

Demonstrated experience establishing procedures and guidelines for others.

Experience working in a high-level collaborative environment and promoting a teamwork mentality.

Ability and talent for problem-solving and critical thinking that supports delivery, integration, and customer adoption.

ABOUT THE BENEFITS Medical, Dental & Vision benefits as well as company-paid Life & Disability Insurance policies.

Optional 401k, additional Disability, Life, and Voluntary AD&D plans available.

Paid Federal holidays and up to two weeks of accrued PTO (Paid Time Off). An opportunity for career growth with training and boot camps.

The required technical equipment will be provided by Purple Jay.

An empowering culture that values your voice while challenging you to get better every day.

Purple Jay, LLC is an Equal Opportunity Employer.

All applicants are considered without regard to race, color, ancestry, national origin, gender/gender identity, sexual orientation, marital and family status, religion and religious belief, age, disability, results of genetic information, and service in the military.

Seniority level Seniority level Mid-Senior level Employment type Employment type Full-time Job function Job function Information Technology Industries IT Services and IT Consulting Referrals increase your chances of interviewing at Purple Jay (SDVOSB) by 2x Inferred from the description for this job Medical insurance Vision insurance 401(k) Paid paternity leave Get notified about new Information Security Engineer jobs in Ashburn, VA . Information Security Analyst (SOC 2 Compliance) Fairfax, VA $92,400.00-$115,000.00 1 month ago Information Security Analyst - Strategic Services Fairfax, VA $105,000.00-$115,000.00 1 month ago Silver Spring, MD $90.00-$105.00 4 days ago Information Systems Security Engineer (COMSEC) Information System Security Engineer ISSE Cleared Information Systems Security Engineer Herndon, VA $120,000.00-$127,000.00 1 week ago Cybersecurity and Network Security Engineer Fairfax County, VA $120,000.00-$210,000.00 2 weeks ago Cyber Security Project Engineer-All Levels Reston, VA $148,850.00-$269,075.00 2 weeks ago We're unlocking community knowledge in a new way.

Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr