Information System Security Engineer

Information Systems Security Engineer (ISSE) - Hybrid / Ashburn, VA / Washington, DC

ABOUT PURPLE JAY
Purple Jay is a veteran-owned IT and InfoSec company that guides government agencies that balances business productivity with security implementation to help maximize their outcomes and achieve their mission. We believe that effective cybersecurity solutions must go beyond simply protecting data and systems—they must align with the mission to enable and empower progress.

Our teams are built to provide cross-domain services with highly skilled and trained personnel supported by agile teams and our proprietary digital solutions that have a track record of success. Our positively charged approach intends to exceed client’s minimum requirements, reduce client and organizational risk, and maximize the return on investment.

OUR COMPANY CULTURE IS BUILT WITH TEAM MEMBERS THAT…

• Have a curious and intellectual mind who are inclined to ask “why.”
• Use creative thinking and adaptive decision-making to solve problems.
• Value their contribution and the contribution of others on the team.
• Are passionate about learning and developing skills to overcome challenges.
• Look to leverage their knowledge or experience to advance within the InfoSec Industry.
• Can connect with people of diverse backgrounds and communication styles, through empathy and clear verbal, visual, and written communication.

ROLE OVERVIEW

Purple Jay is seeking an Information Systems Security Engineer (ISSE) to join our team supporting enterprise security initiatives. This role blends strong systems engineering expertise with cyber risk consulting to build security directly into system architectures and the System Development Life Cycle (SDLC).

The primary focus is on delivering InfoSec outcomes that improve organizational security posture, realize system compliance, and enhance process efficiency. We are looking for a motivated self-starter who thrives in
multidisciplinary, collaborative
environments and can integrate strategic architectural thinking with tactical execution.

Clearance Requirement:
A current Public Trust clearance is preferred. Must be a United States citizen.

Please note
: This is a hybrid position. Candidates must be willing to commute to our physical office in Ashburn, VA (Loudoun County) at least one day per week. Occasional travel to Washington, DC or Rosslyn will apply.

RESPONSIBILITIES

Purple Jay
builds integrated teams of diverse experts
to aid in the effective delivery of services and digital solutions. The role responsibilities include but are not limited to:

Engineering & Architecture:

• Design, develop, and implement security architectures and requirements directly into the system design and SDLC.
• Design and implement security controls and countermeasures to protect enterprise system boundaries.
• Assist in the development of security policies, procedures, and engineering plans that ensure compliance with regulatory requirements.
• Develop mechanisms and digital solutions that support client initiatives and address technical expectations.

Risk Assessment & Compliance:

• Support Authorization and Assessment (A&A) activities, including security control reviews and the preparation of authorization artifacts.
• Identify, assess, and recommend remediation strategies for vulnerabilities across enterprise environments.
• Analyze system issues and security gaps, providing appropriate architectural alternatives and mitigation plans.
• Monitor continuous monitoring data, security incidents, and KPI thresholds to track and report risk status.

Cross-Functional Cyber Risk Support:

• Develop risk awareness strategies and security response plans.
• Support vulnerability management, endpoint security, and threat monitoring architectures.
• Support governance, authentication, and privileged access initiatives.
• Assist with data security validation, privacy reviews, and protection architecture.
• Support requirements analysis, development verification, and maintenance security.
• Collaborate seamlessly with technical teams, business stakeholders, and partners to ensure security control effectiveness.

TECHNICAL SKILLS

• Expertise in information systems security engineering principles: secure architecture design, confidentiality, integrity, and availability.
• Strong knowledge of security compliance frameworks and regulations: NIST SP 800-37 (RMF), ISO 27001 2022, SOC 2, and PCI DSS.
• Deep understanding of cloud security concepts, virtualization, containerization, and network protocols.
• Experience with enterprise security tools: firewalls, intrusion detection/prevention systems, and vulnerability scanners.
• Familiarity with VPNs, network segmentation, and network monitoring tools.
• Familiarity with endpoint protection, encryption tools, and data loss prevention (DLP) solutions.
• Ability to translate complex security requirements into actionable engineering tasks and technical specifications.
• *Scripting skills (e.g., Python, PowerShell, Bash) are a plus.*

PROFESSIONAL SKILLS

• Demonstrated ability to collaborate across departments to drive security engineering initiatives.
• Ability to design and evaluate architectural alternatives, recommending solutions that balance security with business productivity.
• Excellent verbal and written communication skills, including the ability to clearly translate technical engineering concepts to non-technical audiences.
• Strong organizational skills with attention to detail and the ability to manage multiple priorities.
• Strong troubleshooting and decision-making skills under pressure.
• Strong sense of personal accountability and a proactive approach to supporting client missions.

ABOUT THE BENEFITS

WE OFFER…

• Medical, Dental & Vision benefits as well as company-paid Life & Disability Insurance policies.
• Optional 401k, additional Disability, Life, and Voluntary AD&D plans available.
• Paid Federal holidays and up to two weeks of accrued Paid Time Off.
• An opportunity for career growth with training and boot camps.
• The required technical equipment will be provided by Purple Jay.
• An empowering culture that values your voice while challenging you to get better every day.

*Purple Jay, LLC is an Equal Opportunity Employer. All applicants are considered without regard to race, color, ancestry, national origin, gender/gender identity, sexual orientation, marital and family status, religion and religious belief, age, disability, results of genetic information, and service in the military.*