remote

Information System Security Engineer - JMA Resources

Security Engineer

Lead the design, implementation, and testing of cybersecurity solutions for Navy systems, driving RMF compliance, vulnerability analysis, and authorization processes while ensuring robust security controls and documentation.

About the role

Key Responsibilities

Design, develop, and maintain cybersecurity architecture for assigned systems, programs, or enclaves.
Lead RMF activities: identify authorization requirements, coordinate with Authorizing Officials and Security Control Assessors, and manage cross‑domain and reciprocity considerations.
Conduct vulnerability risk analysis, perform security testing, and recommend remediation to mitigate risks.
Prepare and maintain RMF documentation, including System Security Plans, Security Assessment Reports, and Authorization Packages.
Collaborate with system owners, developers, and operations teams to embed security controls throughout the development lifecycle.

Requirements

Strong understanding of RMF processes and NIST SP 800‑53 control families.
Hands‑on experience with vulnerability assessment tools and security testing methodologies.
Proficiency in documenting security controls, risk assessments, and authorization artifacts.
Excellent communication skills to interface with technical and non‑technical stakeholders.
Relevant security certifications (e.g., CISSP, CISM, or equivalent) preferred.

Skills

workday

CompanyJMA Resources

DepartmentEngineering

LocationMechanicsburg, Pennsylvania, United States

Experience2+ years

Tenurefull-time

LevelMid-Level

Posted June 23, 2026