Senior Information System Security Engineer with Security Clearance

Tygart Technology is seeking a Senior Information System Security Engineer (ISSE) with a strong software development focus to help build and secure modern applications. In this role, you’ll work closely with developers, architects, and security teams to integrate security throughout the software development lifecycle (SDLC), ensuring systems are secure by design,not just after deployment. You’ll lead efforts in DevSecOps, secure coding practices, and application security, while ensuring compliance with frameworks such as NIST, RMF, and DoD standards. This position is key to bridging the gap between cybersecurity requirements and real-world software engineering. Key ResponsibilitiesLead and mentor a team implementing the full RMF lifecycle across client systemsOversee planning efforts, ensuring clear ownership, roles, and risk management strategiesGuide system categorization based on mission impact and regulatory requirementsDirect the selection, tailoring, and documentation of security controlsOversee implementation of technical, operational, and management controls across system and application lifecyclesAnalyze vulnerability scan results and provide actionable mitigation recommendationsEnsure security control assessments are properly planned, executed, and documentedPrepare risk management documentation to support system authorization decisionsLead continuous monitoring and ongoing assessment activities to maintain complianceServe as a senior cybersecurity advisor supporting risk analysis, incident response, remediation, and auditsPromote security awareness through training and collaboration with technical teamsTrack and communicate security risks, status, and improvements to leadershipSoftware & DevSecOps FocusIntegrate security into the SDLC and DevSecOps pipelinesSupport architecture reviews and system design risk assessmentsPromote and enforce secure coding practicesConduct and support threat modeling activitiesAssess and secure CI/CD pipelines and Infrastructure-as-Code (IaC) implementationsCollaborate closely with developers and engineers to identify and mitigate risks early in development QualificationsActive Top Secret clearanceBachelor’s degree in Computer Science, Cybersecurity, or related fieldA minimum of 8 years of relevant experience in cybersecurity or information assuranceExperience with tools such as Tenable Nessus, SecurityCenter, IBM Guardium, Nmap, or similarOne Or More Of The Following CertificationsCertified Information Systems Security Professional (CISSP) (or Associate)CompTIA Advanced Security Practitioner (CASP)Certified Secure Software Lifecycle Professional (CSSLP)CISSP- Information System Security Engineering Professional (ISSEP)CISSP- Information System Security Architecture Professional (ISSAP)Experience leading cross-functional cybersecurity and engineering teamsStrong program management experience, including budgeting, reporting, and team oversightHands-on experience applying NIST RMF in enterprise or government environmentsExperience developing security documentation (SOPs, compliance artifacts, QA programs)Experience supporting federal cybersecurity initiatives and assessmentsSoftware Security & DevSecOps ExperienceSecure SDLC and DevSecOps practicesApplication security testing (SAST, DAST, SCA)Threat modeling and secure design reviewsExperience supporting software development in DevOps environmentsFamiliarity With Agile Development Methodologies Preferred QualificationsAdvanced degree in Computer Science, Cybersecurity, or related fieldHands-on software development experienceCISM certificationExperience with programming languages such as Python, Java, C#, .NET, or similar