Information System Security Engineer III

#### Job Summary:

The Information System Security Engineer (ISSE) III is responsible for integrating cybersecurity principles into system engineering processes to ensure the confidentiality, integrity, and availability of information systems. This senior-level role supports the design, development, implementation, and sustainment of secure systems throughout the system lifecycle. The ISSE III works closely with system architects, engineers, program managers, and security teams to ensure compliance with applicable cybersecurity frameworks and regulatory requirements.

Employment is contingent upon contract award and continued Government funding.

#### Supervisory Responsibilities:

• None

#### Duties/Responsibilities:

• Lead execution of all IT Systems Management requirements in accordance with contract and Performance Work
• Integrate cybersecurity requirements into system engineering processes across the system lifecycle (design, development, testing, deployment, and sustainment).
• Implement and support Risk Management Framework (RMF) activities in accordance with NIST SP 80037, NIST SP 80053, and DoD cybersecurity policies.
• Support system security architecture development and ensure alignment with security requirements and system design.
• Conduct security engineering analyses, including threat assessments, vulnerability analysis, and risk assessments.
• Develop and maintain security documentation including:
• System Security Plans (SSPs)
• Security Control Traceability Matrices (SCTMs)
• Plans of Action and Milestones (POA&M)
• Security assessment and authorization artifacts
• Collaborate with system engineers to ensure security controls are properly implemented and validated.
• Support security test and evaluation activities including vulnerability scanning and remediation.
• Assist in preparing systems for Assessment and Authorization (A&A) activities.
• Provide guidance on secure configuration, system hardening, and secure architecture design.
• Coordinate with ISSMs, ISSOs, and system owners to maintain compliance with organizational and regulatory cybersecurity requirements.
• Support continuous monitoring and ongoing authorization activities.

#### Required Qualifications:

• Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, Engineering, or related field (or equivalent experience).
• 8+ years of relevant experience in cybersecurity, information assurance, or system security engineering.
• Experience implementing or supporting Risk Management Framework (RMF) processes.
• Strong knowledge of NIST SP 80053 security controls and compliance requirements.
• Experience supporting system security architecture and engineering activities.
• Familiarity with security tools, vulnerability scanning, and compliance validation.
• Experience working within federal or DoD cybersecurity environments.

#### Desired Qualifications:

• Experience with DoD ATO processes.
• Familiarity with STIG implementation and compliance tools (e.g., SCAP, ACAS).
• Knowledge of DevSecOps or secure software development practices.
• Experience supporting cloud security or hybrid environments.
• Strong analytical and problemsolving skills with the ability to work across multidisciplinary teams.

#### Certifications (One or More Required):

• CISSP (Certified Information Systems Security Professional)
• CASP+
• CISM
• Security+ (DoD 8570/8140 compliant)

#### Physical Requirements:

• Ability to remain seated for extended periods while working at a computer workstation.
• Ability to lift and carry equipment up to 40 pounds, including servers, networking hardware, and IT components.
• Ability to move within office and technical facility environments, including secure facilities.
• May support classified or controlled environments.
• Collaboration with engineering, operations, and cybersecurity teams.
• Ability to support program deadlines and compliance milestones.

#### Technical Skills:

• Risk Management Framework (RMF)
• NIST 80053 Security Controls
• System Security Engineering
• Security Architecture
• Vulnerability Assessment and Remediation
• Continuous Monitoring
• Security Compliance Documentation
• Security Control Implementation

#### Work Environment/ Location:

• Onsite performance at government facilities in Philadelphia, PA.
• Work performed within Government facilities, including secure and classified environments (SCIF).
• Standard operating hours are aligned with mission requirements, with staggered shifts and extended hours as necessary to support operational needs.

#### Travel Required:

• Limited local or regional travel within the Republic of Korea may be required to support mission activities.
• Occasional travel for training, coordination, or mission support as directed.

#### Work Authorization / Security Clearance Requirements:

• U.S. Citizenship required.
• Active Secret clearance eligibility required prior to start.
• Must meet all applicable security, background investigation, and access requirements to support classified systems.

#### Compensation and Benefits:

Salary will be determined based on experience, qualifications, and contract-specific guidelines. A competitive compensation package will be discussed during the interview process.

H2L offers a competitive benefits package that supports the well-being, growth, and success of our employees. Benefits include, but are not limited to:

• Blue Cross Blue Shield (BCBS) of Alabama Health and Medical Insurance
• Dental and Vision Insurance
• 401(k) Retirement Plan
• CompanyPaid Life Insurance
• Supplemental Insurance Options to include ShortTerm and LongTerm Disability Coverage
• Professional Development Opportunities to include licenses, training, and certifications
• Education Reimbursement
• Employee Referral Program
• And more!

We are committed to investing in our team by providing resources that support both personal and professional growth. Specific benefit details will be provided during the hiring process.

#### Additional Eligibility Requirements:

At H2L Solutions, Inc., we seek team members who exemplify our core values in both their work and conduct. In addition to meeting the technical qualifications of the position, all candidates must demonstrate the following:

• Commitment to Service: A strong dedication to supporting clients, teammates, and missioncritical objectives, especially in highstakes or fastpaced government environments.
• Positively Overcomes Challenges: Ability to adapt and remain solutionfocused when encountering obstacles, uncertainty, or evolving project requirements.
• Winning and Competitive Spirit: A drive to exceed expectations, deliver exceptional results, and contribute to the continued success and reputation of H2L in the defense and cybersecurity sectors.
• Efficiency and Productivity: Proven ability to manage time effectively, prioritize tasks, and consistently produce highquality work with attention to detail.
• Professionalism in All Aspects: Maintains the highest standards of ethics, accountability, and respectful communication when interacting with clients, colleagues, and stakeholders.

Employees who align with these values will thrive in our mission-driven, team-oriented environment and contribute meaningfully to the success of our customers and our company.

#### Additional Information:

H2L Solutions, Inc. (H2L) is a leading cybersecurity and IT solutions provider dedicated to delivering cutting-edge security, compliance, and technology services to government and commercial clients. Headquartered in Huntsville, Alabama, H2L specializes in cybersecurity compliance, risk management, and mission-critical IT solutions, helping organizations navigate complex regulatory environments and safeguard their digital assets. Our team of experts is committed to innovation, integrity, and excellence, ensuring our clients meet their security and operational goals. At H2L, we foster a collaborative and dynamic work environment where professionals can grow, contribute, and make a meaningful impact.

#### Affirmative Action / EEO Statement:

H2L Solutions, Inc. (H2L) is an Equal Opportunity Employer and federal contractor. We comply with all applicable federal, state, and local laws regarding nondiscrimination and affirmative action. We do not discriminate based on race, color, religion, sex (including pregnancy, sexual orientation, and gender identity), national origin, age, disability, genetic information, veteran status, or any other legally protected status under applicable law.

As a federal contractor, H2L is committed to affirmative action and complies with the regulations set forth by the Office of Federal Contract Compliance Programs (OFCCP), including Executive Order 11246, Section 503 of the Rehabilitation Act, and the Vietnam Era Veterans’ Readjustment Assistance Act (VEVRAA). We encourage applications from women, minorities, individuals with disabilities, and protected veterans.

If you need assistance or accommodation during the hiring process, please contact the Human Resources Department by emailing human.resources@h2lsolutions.com.

#### How to Apply/Submission Instructions:

Apply via H2L Solutions, Inc. Careers Portal: h2lsolutions.com/careers

NOTE: Only candidates selected for interviews will be contacted. Applicants without the Education and Experience Requirements will not be considered.

#### About H2L Solutions Inc

H2L Solutions is a HUBZone and Service Disabled Veteran Owned Small Business (SDVOSB) cybersecurity company based in Huntsville, Alabama. Through a comprehensive range of cybersecurity services - including penetration testing, vulnerability assessments, skill training, and compliance audits - we excel in providing quality and reliable deliverables that government and commercial organizations can use to ensure information systems are thoroughly protected from outside sources.