Information Systems Security Engineer

Company Description At Quest, we create and manage the software that makes the benefits of new technology real.
Companies turn to us to manage, modernize, and secure their business, from on-prem to in-cloud, from the heart of the network to the vulnerable endpoints.
From complex challenges like Active Directory management and Office 365 migration to database and systems management to redefining security, and hundreds of needs in between, we help you conquer your next challenge now.
We're not the company that makes big promises.
We're the company that fulfills them.
**We're Quest**: Where Next Meets Now.
**Required Language(s)**: English Why work with us
- Life at Quest means collaborating with dedicated professionals with a passion for technology.
- When we see something that could be improved, we get to work inventing the solution.
- Our people demonstrate our winning culture through positive and meaningful relationships.
- We invest in our people and offer a series of programs that enable them to pursue a career that fulfills their potential.
- Our team members' health and wellness is our priority as well as rewarding them for their hard work.
- Collaborate with internal teams and external partners to develop and enforce security policies, procedures, and standards that comply with relevant regulations and industry frameworks.
- Monitor and analyze security incidents, respond to security breaches, and direct incident response efforts to minimize the impact of security events.
- Developing, implementing, and enforcing information systems security policies, ensuring system security requirements are addressed during all phases of the acquisition and Information System (IS) lifecycle.
- Conducting certification and testing by the Risk Management Framework (RMF) and National Institute of Standards and Technology (NIST) policies; identifying deficiencies and providing risk mitigation recommendations.
- Developing the IS artifacts such as Risk Assessments, Security Concepts of Operations (SECONOP), Program Protection Plans, Test Plans, procedures and reports, System Security Plans, and other related documentation.
- Utilizing testing methods, automated tools, plans, and procedures to verify compliance and vulnerability requirements.
- Assess and mitigate system security threats or risks throughout the program life cycle.
- Reviewing Plans of Action and Milestones (POA&Ms) to ensure weaknesses are identified, effective/acceptable mitigation strategies are planned, and timelines are acceptable.
- Assist in development of security processes and implementation of automated tooling that prevent security issues.
- Stay up-to-date with emerging cybersecurity threats, trends, and technologies, and proactively recommend adjustments to our security strategies as needed.
- Provide expert guidance and support to junior cybersecurity team members, fostering professional growth and knowledge sharing.

Skills Needed For the Role -At least three (3) years of experience as an ISSE on programs and contracts of similar scope, type, and complexity.
- Familiarity with System Life Cycle Development (SDLC) methodologies, the 800 series of NIST Special Publications.
- Must possess practical knowledge of IT audits, full security assessment process.
- Must have familiarity with the use and operation of cybersecurity tools such as security scanners (Qualys).

CIS Benchmarks and automated compliance checkers (STIG).
- Expert level familiarity with Microsoft Office Suite (Word, Excel, PowerPoint, Teams, Outlook, Visio, Project, etc.)
- Exceptional verbal and written communication skills, with the ability to collaborate across teams and organizations, including senior-level management.
- Must be able to explain complex cybersecurity concepts to individuals with varying levels of cyber experience -BS or BA in Computer Science, Information Assurance, Computer Engineering, or related discipline
- **preferred, but not required -Fluent in English Quest is an equal-opportunity employer.

Come join us.
For more information, visit us on the web at Quest Careers | Where next meets now.
Join Quest.
**Benefits QBP**: Quest Bonus Program del 5% por su grado jerárquico (Se paga 1 vez al año de acuerdo a ingreso acumulado anual y desempeño del negocio).
**Adjunto paquete de Beneficios de trabajar en QUEST**: Al salario anual bruto adicionarle XIII por Ley.