Security Systems Engineer

Talascend is currently seeking a Security Systems Engineer for a contract opportunity with our client in Kings Point, New York.

Clearance
US Citizenship required
Ability to gain a Public Trust Security Clearance required
Active Public Trust preferred

Overview
The candidate will lead, design, implement, and maintain the Academy’s cybersecurity governance, compliance efforts, and overall security posture. Responsibilities include managing ATO packages, RMF documentation, SSP/POA&M development, Zero Trust initiatives, account lifecycle controls, BYOD governance, and risk management. They will conduct vulnerability scanning, review DOT/MARAD alerts, perform incident response, and monitor enterprise security events. They will also coordinate patching, evaluate software requests, and maintain secure system configurations. The role leads cybersecurity briefings, Awareness Bulletins, Sea Year presentations, and Indoc training, and participates in cyber governance meetings such as DOT Cyber Ops, CAM, vulnerability reviews, Change Control Board, and daily coordination with Academy IT leadership. Ensures alignment with NIST CSF, NIST 800-53, FISMA, DOT, and MARAD requirements to support mission readiness and secure operations.

Responsibilities

• Ensure compliance with NIST CSF and RMF to maintain accreditation and protect system confidentiality, integrity, and availability
• Provide strategic and tactical security guidance, recommending technical and administrative controls
• Direct and mature the Incident Response Program, including triage, escalation, documentation, and after-action improvements
• Administer enterprise security policies, maintain SOPs/checklists, and drive continuous monitoring and process enhancements
• Lead threat and vulnerability management: scanning, pen-test coordination, risk scoring, and remediation tracking
• Conduct threat landscape assessments, business impact analyses, and risk treatment recommendations
• Oversee development of cybersecurity procedures (International Travel, BYOD, secure communications)
• Manage recurring reviews of SSPs, POA&Ms, annual security plans, account audits, and risk acceptance packages
• Serve as primary cybersecurity liaison to DOT, MARAD, auditors, and federal oversight entities
• Support Zero Trust Architecture and broader security architecture modernization
• Lead quarterly and biannual IR tabletop exercises and integrate lessons learned
• Coordinate ITSEC team training and cross-functional knowledge sharing
• Maintain security documentation, templates, policies, and recurring reports (Awareness Bulletins, POA&M dashboards, CSAM reporting)

• Minimum 12 years of progressive cybersecurity experience
• Experience with NIST RMF, ATO, C&A processes, POA&M development, and federal audit preparation.
• Experience in Security Testing & Evaluation, risk assessments, policy and procedure development.
• Experience in U.S. Government contracting or federal cybersecurity environments.
• Strong leadership experience and ability to guide Infrastructure, Applications, and Cyber teams in a collaborative security posture.
• Demonstrated ability to communicate security requirements to technical and non-technical stakeholders, lead governance meetings, and interact with senior federal leadership.
• Expertise with incident response, vulnerability management tools, security event analysis, and risk treatment methodologies.

• Bachelor’s degree in information technology, Computer Science, Cybersecurity, or related field.
• ITIL v3 Foundation certification.
• CISM, CISSP or other advanced security management certifications.
• Azure Security certification
• Experience with Zero Trust Architecture, Cloud security standards, and federal enclave cybersecurity operations.
• Experience with leading training, cyber awareness initiatives, and security program development.
• Experience working in a college or university