Information System Security Engineer (ISSE)

Position Overview:

JMA Resources is seeking a highly motivated Information Systems Security Engineer (ISSE) to join our team. In this role, you will assess and validate the implementation of approved security controls and evaluate system weaknesses. You will prepare security assessment reports with findings and results, while also supporting documentation and remediation efforts. As a trusted partner to both the client and team, the ISSE ensures compliance, strengthens security posture, and supports operational objectives.

Supervisory Responsibilities:

• None

Responsibilities:

• Review, analyze, and evaluate business systems and user needs with a focus on A&A, POA&M remediation, and documentation support.


• Collaborate with the PMO, Operations, and IT Security teams to address the needs in the areas of A&A and POA&M remediation.


• Write, edit, and manage IT Security documentation aligned with FISMA, FIPS, NIST Special Publications, and the Navy RMF Guide.


• Conduct internal audits of the systems to prepare for third-party audits.


• Support the implementation and testing of security controls, and participate in vulnerability and risk assessments.


• Assist in mitigating and closing open vulnerabilities under the system’s change control process.


• Review and update RMF cybersecurity documentation.


• Support incident response, business continuity, disaster recovery, and vulnerability/threat reporting.

• Carry out any other related activities as required, ensuring flexibility and adaptability in meeting the evolving needs of the company and client.

Clearance Level:

• Current or ability to obtain a Department of Defense (DoD) Secret Clearance is required. Note: To obtain a security clearance, you must be a U.S. citizen and meet the 13 adjudicative guidelines .

Required Qualifications:

• 3-5 years of experience in information security engineering, system assessment, or related field.


• Working knowledge of the Risk Management Framework (RMF) and A&A processes, with a thorough understanding of the Navy RMF Process Guide.


• Strong understanding of federal security standards, including FISM, FIPS, and NIST Special Publications.


• Experience writing, editing, and maintaining security documentation for compliance purposes.


• Familiarity with vulnerability management, control implementations, and audit preparation.


• Hands-on experience with:
  
  
  
  • Enterprise Mission Assurance Support Service (eMASS)
  
  


• Security technologies such as firewalls, intrusion detection, prevention systems, and vulnerability assessment tools.


• IA tools and scanners used to evaluate the security posture of the system/enclave.


• Strong analytical and problem-solving skills,


• Excellent verbal and written communication.


• Attention to detail, accuracy, and the ability to work independently as well as in a collaborative team environment.


• Flexibility to adapt to changing prorates while supporting both team members and client requirements.


• Must hold one of the following certifications:
  
  
  
  • Certified in Governance, Risk, and Compliance (CGRC)
  
  
  • CompTIA Advanced Security Practitioner (CASP+)
  
  
  • Certified Information Security Manager (CISM)
  
  
  • Certified Information Systems Security Professional (CISSP)
  
  
  • GIAC Security Leadership (GSLC)
  
  
  • Certified Chief Information Security Officer (CCISO)
  
  

Preferred Qualifications:

• A bachelor’s degree in computer science.

Creating an Environment of Respect and Opportunity:

At JMA Resources, we value the many paths people take to develop their skills and expertise, and we welcome candidates from all backgrounds. Your qualifications may come from a variety of experiences, including formal education, certifications, professional development, mentorship, hands-on work, or a unique combination of these. We encourage you to share the distinctive journey that has prepared you for this role during your interviews.

Location & Commitments:

• Position: Full-time


• Work Arrangement: Hybrid – On-site for a week each quarter at our client site in Mechanicsburg, Pennsylvania.


• Travel Requirements: May be required.


• Location Preference: Candidates within a six-hour driving distance of Mechanicsburg, Pennsylvania, are preferred.


• Work Hours: Standard 40-hour workweek (8 hours/day). Some flexibility may be available to accommodate client needs and personal responsibilities.

What We Offer:

• Competitive salary and discretionary performance-based bonuses.


• Comprehensive health benefits, including medical, dental, and vision insurance.


• Flexible Paid Time Off (PTO) and holidays to help you maintain a healthy work-life balance.


• Opportunities for professional development and continued learning.


• Hybrid/remote work arrangement with flexible hours.


• 401(k) retirement plan with company match.


• Employee recognition programs and company events.

JMA Resources is an equal opportunity employer committed to achieving a workforce with an environment free of discrimination and harassment. All aspects of employment, including recruitment, hiring, promotions, transfers, discipline, terminations, wage and salary administration, benefits, and training, are based on business needs, job requirements, and individual qualifications, without regard to race, age, color, physical or mental disability, religion, gender, sexual orientation, gender identity/expression, marital status, national origin, political affiliation or protected veteran status.

At JMA Resources, we are dedicated to fostering an inclusive environment for all qualified individuals. We provide reasonable accommodations to persons with disabilities to ensure equal access throughout the application and hiring process. If you need assistance or require an accommodation, please reach out to Amy Foy, VP of Employee Experience, at [email protected] .

JMA Resources participates in E-Verify to confirm the identity and employment eligibility of all newly hired employees.