Question
10+

Cybersecurity Engineer III

4/9/2026

The Cybersecurity Engineer III maintains cybersecurity monitoring operations, performs incident triage, and identifies vulnerabilities to recommend remediation strategies. They are responsible for developing A&A documentation, managing security controls, and ensuring compliance with DoD cybersecurity standards.

Salary

130000 - 140000 USD

Working Hours

40 hours/week

Company Size

201-500 employees

Language

English

Visa Sponsorship

No

About The Company
ISS is an innovative information technology (IT) services and solutions provider to the Department of Defense (DoD) and other federal government agencies. We provide expert systems integration and administration, network engineering, software development, information assurance, and project management support. ISS employees are skilled professionals dedicated to providing the highest quality support and services. We are committed to the success of our customer’s mission and experienced in "Meeting Critical Goals on Time Throughout the World."​ Why Work For ISS? At Information Systems Solutions (ISS), we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career.
About the Role

Description

Information Systems Solutions (ISS) is seeking a Cybersecurity Engineer III to support the NIWC PAC Information Technology Management Support Services contract. This role maintains cybersecurity monitoring operations, performs triage to assess the scope and impact of incidents, identifies vulnerabilities, and recommends remediation strategies. The role requires in-depth knowledge of the Risk Management Framework.


This role is 100% onsite.

 

Vulnerability Management & Daily Cyber Operations:

  • Execute daily vulnerability management activities, including responding to and taking action on TASKORDs (Cyber Tasking Orders / Directives). 
  • Perform VRAM (Vulnerability Remediation Asset Manager) operations, including scan cleanup, validation of scan integrity, and investigation of scan results. 
  • Manage and improve CMRS (Cybersecurity Metrics Reporting System) scores, including remediation actions tied to STIG compliance and IAVA reporting. 
  • Review and assess risk reports within ceDAR, ensuring accurate risk identification, prioritization, and mitigation tracking. 
  • Analyze      vulnerabilities using industry-standard identifiers such as CVEs (Common Vulnerabilities and Exposures) and IAVMs (Information Assurance Vulnerability Management alerts). 
  • Utilize endpoint security tools such as Microsoft Defender for Endpoint (MDE) (transitioning from Trellix) to support detection, response, and      remediation efforts. 
  • Ensure data accuracy across vulnerability management platforms and maintain audit-ready records for compliance and reporting.
  • An understanding of the Cyber Operations Chain of Command, such as NCDOC, Cyber 10th fleet, etc. (preferred).

Why Work For ISS?

At ISS we pride ourselves on providing an employee-focused and family first environment. Being a small business, we take the time to get to know our employees and have a vested interest in helping them achieve their career goals. We work to schedule regular social gatherings within the company to foster camaraderie. ISS values their employees by providing a comprehensive benefits package that includes a fully vested 401(k) matching program, coverage of family medical deductibles, spot bonuses, and educational assistance to further your career.

Requirements

  

Clearance Level:

Secret

Certification IAT III

One of the following:

CASP+ 

CCNP Security 

CISA 

CISSP (or Associate) 

GCED 

GCIH


Required Qualifications:

  •  10+ years of experience in cybersecurity, vulnerability management, or incident response. 
  • Strong working knowledge of DoD cybersecurity processes, including TASKORDs, IAVMs, STIGs, and RMF.

Skills & Competencies:

  • Cybersecurity Monitoring and Incident Response 
  • Vulnerability Management and Remediation 
  • Security Testing, Auditing, and Compliance (STIG, IAVA) 
  • Data Analytics and Risk Assessment 
  • Proficiency with IT Security Tools and Endpoint Protection Platforms 
  • Strong analytical, investigative, and problem-solving skills
Key Skills
Cybersecurity monitoringIncident responseVulnerability managementRisk management frameworkSTIG complianceIAVA reportingSecurity control testingPOA&M developmentA&A documentationeMASSVRAMCMRSMicrosoft Defender for EndpointData analyticsRisk assessmentProblem-solving
Categories
TechnologySecurity & SafetyGovernment & Public SectorEngineering
Benefits
401(k) matching programFamily medical deductible coverageSpot bonusesEducational assistance
Apply Now

Please let INFORMATION SYSTEMS SOLUTIONS, INC know you found this job on InterviewPal. This helps us grow!

Apply Now
Prepare for Your Interview

We scan and aggregate real interview questions reported by candidates across thousands of companies. This role already has a tailored question set waiting for you.

Elevate your application

Generate a resume, cover letter, or prepare with our AI mock interviewer tailored to this job's requirements.

Tailor my ResumeWrite my cover letterFind Your Cover Letter