Cyber Sec Analyst III; ISSE

cyber sec analyst iii (isse)

location: virginia beach

job :

category: cyber security

position type: regular full-time

application open date: 3/2/2026

as a carry‑on special technologies engineering and integration (stei) information systems security officer (isso), this position is responsible for supporting the information system owner to complete security assessment, continuous monitoring, and configuration management responsibilities.

responsibilities include, but are not limited to:

• developing and updating assessment and authorization documentation (body of evidence) for management and continuous monitoring of information systems
• performing ongoing compliance assessments using tools, such as assured compliance assessment solution (acas), secure content automation protocol (scap), and mcafee virus scan enterprise, while reviewing, documenting, and maintaining all results
• verifying patches and virus definitions to the systems using existing automated tools
• adhering to pre‑defined configuration management and change management policies and procedures for authorizing software prior to its implementation on systems
• performing security audits to track multiple events including any signs of inappropriate or unusual activity, intrusion events, data transfers, etc.
• performing security assessments of ncs family of systems in accordance with nist, navy, nsa and navintel ia guidance
• working with system engineers to take corrective action to resolve identified problems
• performing site based security assessments (sbsas) of systems and recommending authorization to the designated authorizing official (dao) as a certified trusted agent
• reporting security incidents in accordance with the command incident response plan
• ensuring systems are operated, used, maintained, and disposed of in accordance with all applicable security policies and practices

#li-ll1

• must possess an active top secret/sci clearance w/ci poly (or willing to sit for ci poly)
• must be able to be appointed isse for ncs systems within 6‑months of employment
• experience in validation of poa&ms, acac/nessus, jfrog xray, scap, disa stigs and general rmf artifacts
• experience in applying stig and security control hardening along with reverse engineering potential systematic operational functionality breaks with potential compensating risk management approaches
• 2‑5 years of cybersecurity experience
• experience with risk management framework (rmf) processes
• have developed communication skills and the ability to express thoughts and ideas clearly and concisely
• must be a team player, dedicated to program support, capable of multitasking and working several complex and diverse tasks with simultaneous or near simultaneous deadlines
• be a self‑starter who is accountable and requires minimal direction and supervision
• be open to new and innovative ideas

• proficiency in a scripting language such as java script, php, python, bash, powershell, etc.
• proven experience with container technologies (e.g., docker, podmon, kubernettes)
• familiarity with the ci/cd tools such as bitbucket, jenkins, sonarqube, artifactory, and jfrog xray
• experience developing custom automation scripts, specifically within a containerized ci/cd pipeline
• experience with amazon eks or other container orchestration platforms
• knowledge of data flows and the ability to work up readable network topology and data flow diagrams
• experience with the following systems/platforms/tools: xacta, xacta 360 (preferred), emass, hbss, acas, nessus, splunk
• experience with navintel ia and nsa enterprise services, like continuous monitoring
• knowledge of the following web servers: apache web server, apache tomcat, red hat jboss, nginx, ms iis
• knowledge of vmware esxi
• knowledge of configuration of the following sql databases: ms sql, postgresql, mongodb, mariadb, mysql, elasticsearch
• extensive training or experience with windows and unix based information systems standards with a working knowledge of networking devices

src is a contractor for the u.s. Government. This position will require u.s. Citizenship as well as a u.s. Government security clearance at the top secret / sci level with ci poly…