Why choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both. That’s because MITRE people are committed to tackling our nation’s toughest challenges—and we’re committed to the long-term well-being of our employees. MITRE is different from most technology companies. We are a not-for-profit corporation chartered to work for the public interest, with no commercial conflicts to influence what we do. The R&D centers we operate for the government create lasting impact in fields as diverse as cybersecurity, healthcare, aviation, defense, and enterprise transformation. We’re making a difference every day—working for a safer, healthier, and more secure nation and world. Our workplace reflects our values. We offer competitive benefits, exceptional professional development opportunities for career growth, and a culture of innovation that embraces adaptability, collaboration, technical excellence, and people in partnership. If this sounds like the choice you want to make, then choose MITRE - and make a difference with us.

DEPARTMENT SUMMARY:

The Information Systems Security Department (R311) within the Global Security Services Division (R300) seeks a Lead Information Systems Cyber Engineer to provide Information Assurance and Cybersecurity services for classified systems. This role involves integrating security into large engineering projects, supporting multiple sponsors, and contributing to advanced security concepts in classified environments.

BASIC QUALIFICATIONS:

• Active Top Secret security clearance.
• Minimum of 8 years of related experience with a B.S. in Computer Science or equivalent education/experience.
• Expertise in RMF, NIST SP 800-53, STIGs, SCAP, and classified infrastructure.
• Proficiency in tools like E-Mass, XACTA, and SCC.
• Strong communication skills for engaging with senior government leaders and technical peers.
• IAM Level III certification (DoD 8570.01M).
• This position has an on-site requirement of 5 days a week on-site.

PREFERRED QUALIFICATIONS:

• Familiarity with RMF, CNSSI 1253, NISPOM, DCSA DAAPM, and classified systems like SIPRNET, ACAS, and ESS.
• Experience with Windows Server 2019, Active Directory, SPLUNK, and intrusion detection tools.
• IAM Level II or higher certifications.

• Develop, implement, and oversee classified information system security programs.
• Ensure compliance with Risk Management Framework (RMF) policies, including System Security Plans (SSPs), Risk Assessment Reports, and Security Controls Traceability Matrix (SCTM).
• Maintain operational security posture, conduct vulnerability assessments, and support Assessment & Authorization (A&A) activities.
• Mentor junior ISSOs and collaborate with engineers and stakeholders to enhance cybersecurity processes and policies.
• Lead efforts to improve cybersecurity risk posture, respond to Cyber Operational Readiness Assessments, and develop strategic plans.
• Provide subject matter expertise on cybersecurity concerns and protection of advanced technologies.