Information System Security Engineer (ISSE)

At Accenture Federal Services, nothing matters more than helping the US federal government make the nation stronger and safer and life better for people. Our 13,000+ people are united in a shared purpose to pursue the limitless potential of technology and ingenuity for clients across defense, national security, public safety, civilian, and military health organizations. Join Accenture Federal Services, a technology company within global Accenture. Recognized as a Glassdoor Top 100 Best Place to Work, we offer a collaborative and caring community where you feel like you belong and are empowered to grow, learn and thrive through hands-on experience, certifications, industry training and more. Join us to drive positive, lasting change that moves missions and the government forward! Accenture Federal Services is looking for an Information System Security Engineer to join our team and support our client in the Northern VA area. The ISSE will work as part of a team reviewing and assessing Risk Management Framework (RMF) authorization body of evidence for classified information systems, to include: System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Continuous Monitoring Plan, Incident Response Plan, Access Control Plan, Security Assessment Plan, etc. What you’ll do: Review and implement least-privilege IAM policies across services Ensure secure use of AWS Secrets Manager with EKS and applications Apply security best practices to IaC configurations (e.g., encryption, secure defaults) Support audit trail and logging configurations using AWS CloudTrail and AWS Config. Maintain overall security posture of environment to include monitoring access logs Review new and existing systems for technical compliance with IA directives and protection of data at all classification levels including SCI Advise on in-depth security design review and threat/risk assessments Provide inputs to technical artifacts, including Plans of Action and Milestones (POAMs), Security Control Traceability Matrices (SCTM), and Risk Assessment Reports (RARs) Conduct site visits (as required) and assessments to inspect IA plans and security control implementations and support Incident Response Team (IRT) activities What you’ll need: 3 years of implementing NIST 800-53, Rev 4 and the Risk Management Framework (RMF) 3 years of experience with Windows and/or Linux environments 1 year of experience with AWS environments 2 years of using information security and assurance practices and principles Experience contributing to cloud Authorization to Operate (ATO) and/or Interim Authorization to Test (IATT) efforts Experience with MS Active Directory, ACAS/Nessus, McAfee, AWS Security, etc. DoD 8570 IAT Level II certification or higher (e.g. Sec+, CISSP, CASP, etc.) Experience working with Government personnel Bonus points if you have: ACAS/Nessus for scanning experience Experience utilizing SIEM/Splunk to configure and operate SIEM, create dashboards, reports Experience with Incident handling procedures Other Security related certifications (Cloud, SIEM, forensics, Linux, Windows, etc) Experience working in a DevSecOps project environment Formerly or currently a system administrator, developer, or engineer JSIG or ICD 503 compliance Strong verbal and written communication skills Able to engage with users in a professional manner and present technical concepts plainly to semi-technical customers Ability to work in a matrixed team environment and support multiple different efforts as needed Desire to learn new technologies and tools and willing to share your experience with the team Security Clearance: An active TS/SCI level clearance required As required by local law, Accenture Federal Services provides reasonable ranges of compensation for hired roles based on labor costs in the states of California, Colorado, Hawaii, Illinois, Maryland, Massachusetts, Minnesota, New Jersey, New York, Washington, Vermont, the District ... (truncated, view full listing at source)