Question
10+

Cybersecurity Engineer III

2/19/2026

The Cybersecurity Engineer III will support Assessment and Authorization (A&A) accreditation efforts, maintaining cybersecurity monitoring operations, assessing incidents, identifying vulnerabilities, and recommending remediation strategies based on in-depth knowledge of the Risk Management Framework. Key duties include testing security controls, conducting reconnaissance, authoring Plans of Milestones and Actions (POA&Ms), developing comprehensive A&A documentation, and adhering to eMASS scheduled tasking.

Salary

140000 - 150000 USD

Working Hours

40 hours/week

Company Size

201-500 employees

Language

English

Visa Sponsorship

No

About The Company
ISS is an innovative information technology (IT) services and solutions provider to the Department of Defense (DoD) and other federal government agencies. We provide expert systems integration and administration, network engineering, software development, information assurance, and project management support. ISS employees are skilled professionals dedicated to providing the highest quality support and services. We are committed to the success of our customer’s mission and experienced in "Meeting Critical Goals on Time Throughout the World."​ Why Work For ISS? At Information Systems Solutions (ISS), we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career.
About the Role

Description

Information Systems Solutions (ISS) is seeking a Cybersecurity Engineer III to support the NIWC PAC Information Technology Management Support Services contract. The Cybersecurity Engineer III will be responsible for supporting Assessment and Authorization (A&A) accreditation efforts. This role maintains cybersecurity monitoring operations, performs triage to assess the scope and impact of incidents, identifies vulnerabilities, and recommends remediation strategies. The role requires in-depth knowledge of the Risk Management Framework.


100% onsite


Key Responsibilities:

· Test and apply security controls based on security categorization, the application of overlays (privacy, classified, intel, etc.) and security control tailoring (AI, NOFORN, etc.).

· Conduct active and passive reconnaissance of data, with the ability to assess and author Plans of Milestones and Actions (POA&Ms) containing accurate and verifiable mitigation statements, milestone tracking, and applying to the most relevant security control.

· Development of comprehensive required A&A documentation, including System Security Plan (SSP), Security Assessment Plan (SAP), Security Assessment Reports (SARs), etc.

· Adherence to the eMASS scheduled tasking within the accreditation cycle, including Quarterly Independent Verification and Validation (IV&V), quarterly STIG checks, Annual Security Review (ASR), monthly POA&M updates, and resubmission for ATO, ATC, IATC and IATT as applicable.

· Maintenance of DISA circuit connections (CCSDs), inheritance from accredited systems and cloud service providers, and the workflow schedule on accreditations.


Why Work For ISS?

At ISS we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career.

Requirements

 Clearance Level

Secret


Certifications

IAT III (one of the following) 

CASP+ 

CCNP Security 

CISA 

CISSP (or Associate) 

GCED 

GCIH


Required Qualifications:

· 10+ years of experience in cybersecurity or incident response.

· Certifications preferred: Certified Information Systems Security Professional (CISSP).


Skills & Competencies:

· Cybersecurity Monitoring and Incident Response

· Security Testing, Auditing, and Remediation

· Data Analytics and Risk Assessment

· Proficiency with IT Security Software and Web Security Tools

Key Skills
Assessment And AuthorizationCybersecurity MonitoringIncident TriageVulnerability IdentificationRemediation StrategiesRisk Management FrameworkSecurity Control TestingSecurity Control TailoringPlan Of Milestones And ActionsSystem Security PlanSecurity Assessment PlanSecurity Assessment ReportseMASS TaskingIndependent Verification And ValidationSTIG ChecksPOA&M Updates
Categories
Security & SafetyTechnologyEngineeringGovernment & Public SectorData & Analytics
Benefits
401k Matching ProgramFamily Medical Deductibles CoverageSpot BonusesEducational Assistance
Apply Now

Please let INFORMATION SYSTEMS SOLUTIONS, INC know you found this job on InterviewPal. This helps us grow!

Apply Now
Prepare for Your Interview

We scan and aggregate real interview questions reported by candidates across thousands of companies. This role already has a tailored question set waiting for you.

Elevate your application

Generate a resume, cover letter, or prepare with our AI mock interviewer tailored to this job's requirements.

Tailor my ResumeWrite my cover letterFind Your Cover Letter