SMX is seeking a highly motivated Information Systems Security Engineer (ISSE) – Mid to support a mission-critical federal program in Washington, DC. This individual will support the design, implementation, assessment, and continuous improvement of security controls across enterprise information systems and technology environments. The selected candidate will work closely with system owners, cybersecurity personnel, engineers, architects, and government stakeholders to ensure systems meet federal cybersecurity requirements while supporting mission objectives. The ideal candidate will possess experience supporting Risk Management Framework (RMF) activities, security engineering, vulnerability management, security testing, and system authorization efforts within complex federal environments. This role requires strong technical and analytical skills with the ability to evaluate security risks, implement mitigation strategies, and contribute to the secure operation of mission-critical systems. This position is on site in Washington, DC and requires an active TS/SCI clearance.  

Essential Duties & Responsibilities:

• Support the design, implementation, and maintenance of security controls for enterprise information systems and applications
• Develop, maintain, and update security documentation including System Security Plans (SSPs), security control implementation documentation, mitigation plans, and supporting RMF artifacts
• Assist with system categorization, authorization boundary development, and security architecture documentation
• Create and maintain security test plans, procedures, and supporting documentation to validate implementation of security controls
• Perform security assessments, control validations, vulnerability analyses, and risk evaluations to identify security weaknesses and recommend corrective actions
• Support vulnerability remediation activities and validate effectiveness of implemented mitigations
• Analyze security findings and recommend technical solutions to reduce risk and improve security posture
• Support audit preparation, compliance assessments, and continuous monitoring activities
• Review system configurations, software inventories, hardware inventories, and user access controls to ensure compliance with security requirements
• Assist in the development and maintenance of business impact analyses, continuity of operations documentation, and security-related operational procedures
• Monitor security alerts, vulnerability reports, and threat information to identify potential risks to information systems
• Collaborate with system administrators, developers, cybersecurity personnel, and government stakeholders to address security requirements throughout the system lifecycle
• Participate in security engineering reviews, architecture discussions, and technical planning activities
• Support implementation of security best practices and contribute to program cybersecurity initiatives

Required Skills & Experience

• Active TS/SCI clearance required
• Minimum of 5 years of professional experience supporting cybersecurity, information assurance, security engineering, or related disciplines
• Experience supporting Risk Management Framework (RMF) activities and NIST-based security compliance programs
• Experience developing and maintaining SSPs, POA&Ms, security control documentation, and related authorization artifacts
• Experience conducting vulnerability assessments, security testing, and risk analysis activities
• Experience evaluating and implementing security controls in accordance with federal cybersecurity requirements
• Familiarity with NIST 800-53, NIST 800-37, and federal information security requirements
• Experience supporting Authorization to Operate (ATO) activities and continuous monitoring programs
• Experience reviewing system architectures, boundary definitions, access controls, and security configurations
• Knowledge of vulnerability management processes and remediation methodologies
• Strong analytical, troubleshooting, and problem-solving skills
• Ability to assess technical findings and develop practical risk mitigation recommendations
• Strong written and verbal communication skills
• Ability to work independently and collaboratively in a team environment

Desired Skills & Experience 

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Engineering, Information Systems, or related field

• Experience supporting federal government, law enforcement, intelligence community, or national security programs

• Experience supporting cloud-based environments and cloud security controls

• Experience supporting Governance, Risk, and Compliance (GRC) platforms

• Familiarity with enterprise security tools including vulnerability scanning and security monitoring solutions

• Experience supporting security audits, assessments, and compliance reviews

• Familiarity with Agile development methodologies and DevSecOps practices

• One or more of the following certifications preferred:

• Security+

• CAP (Certified Authorization Professional)

• CISSP Associate

• SSCP

• GSEC

• CASP+

Other relevant cybersecurity certifications

Application Deadline:  9-4-2026

LI-SA1

The SMX salary determination process takes into account a number of factors, including but not limited to, geographic location, Federal Government contract labor categories, relevant prior work experience, specific skills, education and certifications. At SMX, one of our Core Values is to Invest in Our People so we offer a competitive mix of compensation, learning & development opportunities, and benefits. Some key components of our robust benefits include health insurance, paid leave, and retirement.

The proposed salary for this position is:

$105,200—$176,900 USD

At SMX®, we are a team of technical and domain experts dedicated to enabling your mission. From priority national security initiatives for the DoD to highly assured and compliant solutions for healthcare, we understand that digital transformation is key to your future success.

We share your vision for the future and strive to accelerate your impact on the world. We bring both cutting edge technology and an expansive view of what’s possible to every engagement. Our delivery model and unique approaches harness our deep technical and domain knowledge, providing forward-looking insights and practical solutions to power secure mission acceleration.

SMX is an Equal Opportunity employer including disabilities and veterans.

Selected applicant may be subject to a background investigation and/or education verification.

SMX does not sponsor a new applicant for employment authorization or immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer).