Information System Security Engineer (ISSE)

Overview: Cyber Defense Technologies (CDT) is is seeking a highly skilled and experienced Information System Security Engineer (ISSE) to join our team in St. Petersburg, FL. This role is ideal for a proactive thrives in technically demanding environments requiring autonomy, precision, and depth beyond basic RMF compliance activities. The selected candidate will operate independently, taking ownership of complex security challenges and driving solutions from identification through resolution. Responsibilities include implementing and enforcing security standards across a diverse and evolving systems portfolio, bridging high-level engineering principles with hands-on vulnerability analysis and remediation.

What We Are Looking For:

• Critical Thinking: You go beyond identifying vulnerabilities — you analyze root cause and implement corrective actions that preserve system performance and engineering integrity.
• Self-Directed Executor: You are comfortable transforming high-level objectives into measurable outcomes without the need for constant oversight or prescriptive guidance.
• Technically Versatile: You possess deep expertise in patch management and compliance enforcement, coupled with the intellectual curiosity to understand and navigate the complexities of the Radio Frequency (RF) spectrum.
• Security Engineering Authority: You serve as a technical lead for system hardening initiatives, ensuring systems are not only compliant but resilient against modern threat actors.

Clearance Requirements: An active Secret clearance or higher is required. All candidates must be U.S. Citizens. Applicants who do not meet these requirements will not be considered.

Responsibilities:

• Diverse Image Deployment & Orchestration: Manage and secure a highly diverse distribution of system images. You will be responsible for ensuring security integrity across several image builds, ensuring that rapid deployment doesn't compromise system hardening.
• Rapid Tech Integration: Serve as the security lead for "first-of-its-kind" technologies. You will perform security engineering on emerging tech as it enters the pipeline, developing protection profiles for hardware and software that may not yet have an established DISA STIG or roadmap.
• Strategic Risk Mitigation: Apply Information Assurance (IA) concepts and DoW security standards to proactively identify and neutralize security risks before they impact mission readiness.
• Operationalize Compliance: Lead the establishment of continuous monitoring processes to streamline Authorization to Operate (ATO) workflows, ensuring strict alignment with DoD and IC policy guidance.
• System Architecture Hardening: Implement and engineer advanced security monitoring solutions for Risk Management Framework (RMF) compliance across diverse systems and regional AOR sensors.
• Control Mapping & Authorization: Independently map NIST 800-53 controls and DISA Control Correlation Identifiers (CCI) to new system capabilities to ensure seamless ATO renewals.
• Configuration Authority: Coordinate complex system updates and configuration changes directly with customers, maintaining meticulous version history and compliance documentation.
• Security Engineering & Hardening: Execute and engineer security safeguards across enterprise, embedded, and air-gapped systems on a wide variety of hardware platforms.
• Vulnerability Lifecycle Management: Own the full remediation process for identified vulnerabilities, moving beyond mere identification to technical resolution.
• Cross-Platform Patch Management: Independently manage and execute full patching cycles for Windows, Linux, Android, and iOS environments.
• Dynamic Security Testing: Design and execute original security test cases and conduct comprehensive security testing to validate system resilience.
• Mission-Focused Solution Engineering: Rapidly engineer technical solutions that adapt to evolving customer requirements and real-world mission demands.

Technical Areas of Expertise:

• RMF & Regulatory Architecture: Advanced mastery of the NIST 800-53 Risk Management Framework (RMF) process. Ability to architect compliance strategies that ensure authorization for complex, multi-domain systems.
• Systems Hardening & Compliance Management: Deep expertise in the manual and automated application of DISA STIGs across enterprise, embedded, and air-gapped systems.
• Virtualization & Environment Scaling: Expert-level administration of VMware and standalone environments, with the ability to secure virtualized infrastructure in high-stakes settings.
• Full-Spectrum Vulnerability Management: Proficiency in utilizing enterprise tools such as Nessus, NexPose, or OpenVAS to not only identify threats but to engineer and validate remediation paths.
• Forensic & Imaging Engineering: Command of standard forensic practices and advanced imaging software. Expertise in managing a diverse image distribution process to ensure baseline integrity across platforms.
• Cross-Platform Administration: Senior-level administration of Linux and Windows ecosystems, including the ability to perform forensic analysis and administration on mobile platforms (Android/iOS).
• Patch Orchestration: Proven ability to design and execute robust patch management solutions that minimize downtime while maximizing system defense.
• RF & Electronic Warfare (Desired): Familiarity with Radio Frequency (RF) spectrum, ELINT, or SIGINT is highly valued for securing specialized sensors and communication arrays.
• Technical Consulting & Requirement Translation: The ability to serve as a Subject Matter Expert (SME), translating ambiguous customer needs into technical tasking and business processes for both buyers and end-users.

Required Qualifications:

• Experience: Minimum of 5–8 years of experience in Information System Security Engineering (ISSE) or Systems Administration, with a proven track record of managing security for complex, multi-platform environments.
• Education: Bachelor’s degree in computer science, Cybersecurity, Engineering, or a related technical field (Equivalent professional experience may be considered).
• DoD 8570 Compliance: Must possess an active IAM/IAT Level II or III certification (e.g., CISSP, CASP+, or Security+ CE) to meet baseline federal requirements.
• Operating System Mastery: Demonstrated expert-level proficiency in both Linux (RHEL/Ubuntu) and Windows Server environments, including command-line mastery and system hardening.
• RMF Expertise: Hands-on experience navigating the NIST 800-53 Risk Management Framework (RMF) from initial categorization through continuous monitoring and ATO maintenance.
• Virtualization & Imaging: Professional experience managing VMware environments and executing complex image distribution processes across diverse hardware sets.
• Tool Proficiency: Advanced experience with vulnerability assessment tools (e.g., ACAS, Nessus, SCAP) and the ability to interpret raw data into actionable engineering tasks.

Desired Qualifications:

• SOCOM Community Expertise: Proven operational experience integrating and securing tactical sensors and cutting-edge technologies within the U.S. Special Operations Command (SOCOM) environment. You understand the unique security requirements and rapid deployment cycles inherent to the Special Operations community.
• Tactical Technology Integration: Skilled in the deployment and hardening of mission-specific hardware, with the ability to bridge the gap between specialized tactical equipment and enterprise-level security standards.
• Educational Foundation: We value a combination of formal professional training and intensive, "boots-on-the-ground" technical experience in high-tempo defense environments.

Travel: CONUS Travel of 10 to 15% may be required as well as occasional OCONUS travel depending on program needs

Why Join Cyber Defense Technologies?
At CDT, we offer a collaborative and inclusive work environment where your expertise in system security can help shape the future of cybersecurity and engineering solutions.
Compensation and Benefits:

• Competitive salary based on experience.
• Comprehensive benefits package, including health, dental, and retirement plans.
• Opportunities for professional development and career advancement.

CDT is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity employer making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.

Apply Now:
If you are a proactive Information System Security Engineer (ISSE) and thrive in dynamic environments, we encourage you to apply and join the CDT team!