INFORMATION SYSTEMS SECURITY ENGINEER SKILLS, EXPERIENCE, AND JOB REQUIREMENTS

Reviewed by Lam Nguyen under Editorial Standards

Updated: Oct 28, 2025 - The Information Systems Security Engineer has experience supporting C4ISR systems with RMF package development and expert knowledge of DoD IA/Cybersecurity policies, RMF, and NIST SP 800-53. This role demands an active CompTIA Security+ certification, proficiency with tools such as eMASS, ACAS, STIGs, and SCAP, and advanced skills in cybersecurity, IT, and cloud/network architecture. In addition, the engineer needs strong communication and collaboration abilities to engage stakeholders and ensure system confidentiality, integrity, and availability.

Essential Hard and Soft Skills for a Standout Information Systems Security Engineer Resume

  • Cybersecurity Engineering
  • Risk Management
  • Vulnerability Assessment
  • Security Architecture
  • RMF Compliance
  • System Authorization
  • Information Assurance
  • Security Documentation
  • Continuous Monitoring
  • Access Control
  • Stakeholder Collaboration
  • Technical Leadership
  • Communication Skills
  • Problem Solving
  • Team Collaboration
  • Briefing Preparation
  • Customer Interaction
  • Project Management
  • Stakeholder Coordination
  • Security Training

Summary of Information Systems Security Engineer Knowledge and Qualifications on Resume

1. BS in Information Technology with 5 years of Experience

  • In-depth knowledge and experience with installing, configuring, and securing SQL per DoD STIGs.
  • Advanced CISCO networking experience. 
  • Must have in-depth knowledge of routing and switching, as well as configuring and hardening per DoD STIGs.
  • In-depth knowledge and experience with all versions of Microsoft Windows, server, and client.
  • Knowledge and experience in installing, configuring, and securing all aspects of VMWare.
  • Knowledge and experience in evaluating proposed security architectures and designs against security compliance requirements.
  • Basic understanding of information security principles and risk assessment techniques.
  • Experience with using NESSUS and other scanning applications.
  • Advanced communications skills, able to work well with others, independently, and as part of a team.
  • Must be able to work well with others, including educating individuals who may not share the same level of understanding of IT and security.

2. BS in Network Engineering with 4 years of Experience

  • DoD 8570.01-M IAT Level II certification (preferably Level III).
  • Experience applying RMF security and program protection requirements across all phases of the SDLC.
  • Knowledge of Layer 3 network architecture and ability to produce network diagrams using Visio, MagicDraw, or similar MBSE tools.
  • Understanding of common information system threats and their impact on confidentiality, integrity, and availability.
  • Familiarity with system testing, evaluation methods, and RMF assessment processes.
  • Experience with DoD export control regulations.
  • Proficiency with IBM DOORS or comparable requirements management tools.
  • Ability to produce clear, authoritative security artifacts, plans, and reports.
  • Proven skill in working across engineering, program management, and security teams.
  • Capable of evaluating complex technical and security issues and proposing practical solutions.

3. BS in Computer Science with 7 years of Experience

  • Strong technical background or prior System Administrator experience.
  • Proven work experience in PMO Security, with IASAE level II certification (CASP+ CE, CISSP (or Associate), CSSLP.
  • Application Security and Development experience ( OWASP/ ASD STIG).
  • Strong knowledge of the Risk Management Framework NIST SP 800-53.
  • Strong Knowledge of Agile methodology.
  • Experience with Static and Dynamic software testing products.
  • Experience with Microsoft Team Foundation Server and Application Lifecycle Management tools.
  • Strong client-facing and teamwork skills.
  • Excellent time management and organizational skills to set and meet deadlines.
  • Excellent written and oral communication skills.
  • Able to serve as SCRUM Master and facilitate Agile ceremonies.

4. BS in Computer Engineering with 6 years of Experience

  • Cybersecurity/IA experience supporting C4ISR systems with direct RMF package development.
  • Active CompTIA Security+ certification.
  • Expert knowledge of DoD IA/Cybersecurity policies, RMF, and NIST SP 800-53.
  • Advanced understanding of Cybersecurity, IT, Cloud/Network Architecture, and related concepts.
  • Proficient with systems, networks, deployment environments (data center, cloud), and security threats/vulnerabilities.
  • Skilled in DoD tools for vulnerability/compliance (eMASS, ACAS, STIGs, SRGs, SCAP).
  • Experience in developing RMF artifacts, planning/executing security assessments, and reporting to IPTs, Program Offices, and external stakeholders.
  • Background in program development/oversight, ensuring system confidentiality, integrity, and availability.
  • Strong communicator with both technical and non-technical stakeholders.
  • Effective collaborator across IPTs, contractors, and government to align on security requirements.
  • Solid analytical abilities, with expertise in assessing emerging threats, balancing trade-offs, and providing actionable recommendations under pressure.

5. BS in Systems Engineering with 10 years of Experience

  • Experience as an Information Systems Security Engineer (ISSE) or Network Engineer on programs and/or contracts with the customer space.
  • Current CASP or CISSP certification.
  • CISSP-ISSEP certification (DoD 8570 baseline, Level III)
  • Strong technical writing skills with the ability to produce clear, concise, and comprehensive documentation.
  • Excellent communication skills with the confidence to deliver briefings to senior-level DoD officials, both in formal presentations and ad hoc discussions.
  • Expertise in network technology and systems security engineering.
  • Experience in identifying, researching, characterizing, and documenting security weaknesses related to operating systems, software applications, firmware, network hardware components, as well as network architecture design and documented policies and procedures.
  • Experience developing and documenting system security requirements and conducting requirements gap analysis.
  • Knowledge of, and practical experience with the NIST Special Publications 800 Series, CNSSI 1253, and DoD 8500.
  • Experience with network technologies and the ability to demonstrate knowledge of network protocols, communications systems, and architectures.
  • Significant hands-on experience implementing security and/or network components, i.e., routers, firewalls, IPS, IDS, etc.
  • Ability to work independently within a schedule and with little direction. 

Professional Skills FAQs

What are professional skills?

Professional skills are abilities that help individuals perform tasks effectively in a workplace environment. These skills include both technical competencies required for specific roles and soft skills such as communication, teamwork, and problem solving.

What is the difference between hard skills and soft skills?

Hard skills are technical abilities learned through education or training, such as programming, data analysis, or laboratory testing. Soft skills refer to interpersonal abilities like communication, leadership, adaptability, and teamwork.

Why are professional skills important for careers and resumes?

Professional skills help employers evaluate whether a candidate can perform job responsibilities effectively. Listing relevant skills on a resume demonstrates qualifications and helps applications pass Applicant Tracking Systems used in modern hiring processes.

What professional skills do employers look for?

Employers usually value a combination of technical expertise and transferable workplace skills. Common examples include analytical thinking, communication, teamwork, leadership, time management, adaptability, and digital literacy.

How can professionals develop professional skills?

Professionals can develop skills through continuous learning, training programs, certifications, mentorship, and practical work experience. Staying updated with industry trends also helps individuals maintain relevant and competitive skills.

Editorial Process

Lamwork content is developed through structured review of publicly available job postings and documented hiring trends.

Editorial operations are managed by Thanh Huyen, Managing Editor, with research direction and final oversight by Lam Nguyen, Founder & Editorial Lead. Content is periodically reviewed to reflect observable labor market changes.

Relevant Information

Information Systems Security Manager Skills, Experience, and Job Requirements