The Information System Security Engineer (ISSE) will be responsible for interfacing with customers and leading other TDI team members to develop system security plans and their associated appendices. They will be responsible for performing security assessments to ensure compliance with internal policies, controls, and standards, as well as client and regulatory security requirements. These assessments include evaluating technological, operational, management and privacy controls in order to evaluate the design and implementation of security controls. The individual will be responsible for risk and compliance management and reporting to include risk assessments, system security plans, security assessment reports, vulnerability assessments, and POA&M management.
The desired candidate will also have experience conducting technical assessments to identify vulnerabilities and providing recommendations for remediation. Technical assessments include utilizing vulnerability scanning tools, performing penetration testing and conducting web application assessments.