DeMase Technical Services is a Women-Owned Small Business created by experts in the cybersecurity, energy, nuclear, and defense markets. We offer best-in-class solutions for nuclear facility licensing, permitting, startup, operations, cybersecurity, and next generation technologies. DeMase provides expert professionals in the fields of cybersecurity, next generation information technologies, nuclear engineering, nuclear technologies, and environmental management. Our cybersecurity team is an industry leader supporting the Cybersecurity Maturity Model Certification (CMMC) ecosystem. DeMase is an expert authorized CMMC C3PAO and full-service CMMC provider for readiness and certification. https://demase-tech.com/
The Information System Security Engineer (ISSE) will support cybersecurity engineering, design, assessment, and compliance efforts for both DOE classified systems and Controlled Unclassified Information (CUI) environments. The ISSE ensures information systems are architected, implemented, and maintained in alignment with DOE directives, NIST frameworks, and organizational cybersecurity requirements. This role collaborates with engineering, cybersecurity, operations, and program leadership to maintain secure, compliant, and resilient information systems.
This role requires the ability to obtain an active DOE Q security clearance (or equivalent DoD TS).
- Develops and maintains system security architectures for DOE classified and CUI systems;
- Integrates security controls into system design, development, and implementation activities across the system lifecycle;
- Produces and maintains RMF authorization documentation, including SSPs, SPPs, RARs, SAP/SAR inputs, and associated artifacts;
- Performs risk assessments, vulnerability analysis, and technical security evaluations;
- Ensures system compliance with DOE O 205.1C, DOE O 471.6, DOE cybersecurity program guidance, NIST SP 800-53, and NIST SP 800-171;
- Works closely with ISSMs, ISSOs, system administrators, and network engineers to validate, implement, and assess security controls;
- Supports continuous monitoring activities, configuration management, change control, and POA&M lifecycle management;
- Assists with internal and external cybersecurity audits, inspections, and DOE assessments;
- Leads or supports technical troubleshooting of security-related issues affecting classified or CUI systems;
- Installs, configures, and maintains security-related tools such as SIEM platforms, vulnerability scanners, and monitoring solutions;
- Contributes to incident response activities in accordance with DOE reporting requirements; and
- Maintains awareness of evolving threats, security technologies, and updates to DOE and NIST requirements.
Basic qualifications
- Active DOE Q security clearance (or equivalent DoD TS)
- Bachelor’s degree in cybersecurity, computer science, engineering, or a related field (or equivalent experience)
- Strong understanding of NIST RMF, NIST SP 800-53, and NIST SP 800-171 security control families
- Experience developing security authorization documentation
- Proficiency in vulnerability assessment, risk analysis, and secure system configuration
- Familiarity with classified computing environments, network security, and enclave architectures
- Strong written and verbal communication skills with the ability to work both independently and within interdisciplinary teams
Preferred skills/qualifications
- CISSP, CAP, Security+, CASP+, or other relevant certifications
- Experience with DOE assessment and authorization tools or workflows
- Background in system administration, network engineering, or software development
- Experience implementing secure enclave designs, virtualization hardening, or cross-domain solutions
Pay range: $105,000 - $165,000 depending on education and experience
Disability accommodation
DeMase Technical Services, LLC is committed to providing reasonable accommodation to applicants with disabilities where appropriate. Determinations on requests for reasonable accommodation will be made on a case-by-case basis.
Benefits
At DeMase Technical Services, we recognize that high-performing technical professionals need more than just a paycheck—they need a total rewards package that supports performance, resilience, and long-term career sustainability. Our approach is designed with a focus on the full lifecycle of our workforce, from day-to-day well-being to long-term financial security.
We offer a competitive and thoughtfully structured benefits program that supports the demands of technical work, promotes personal and professional stability, and enables you and your family to thrive—both on and off the job. For full-time employees, our benefits include:
· Healthcare (Medica, dental, and vision insurance)
· Flexible schedule
· Health savings account
· Life insurance
· Paid time off
· Retirement plan
· 10 paid holidays
Compliance
DeMase Technical Services is an equal opportunity employer. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, and other factors protected under applicable law.
Affirmative Action employer compliant with OFCCP regulations.
EEOC/AA Employer – Individuals with disabilities and protected veterans welcomed.
E-Verify
DeMase participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program.
Applicants must be able to comply with DeMase Technical Services policies and procedures, including the Code of Ethics and Business Conduct and related workplace conduct and safety policies.
Pay transparency and nondiscrimination statement
DeMase Technical Services complies with all applicable federal, state, and local pay transparency laws. The compensation range provided in this job posting represents a good faith estimate of the base salary or hourly rate for this position at the time of posting. Actual compensation may vary based on factors such as experience, education, skills, geographic location, and internal equity.
In addition to base pay, eligible employees may receive a comprehensive benefits package, which may include health insurance, retirement plans, paid time off, and other company-sponsored programs (all benefits are subject to eligibility requirements).
As a federal contractor, DeMase Technical Services will not discharge or in any other manner discriminate against employees or applicants because they inquire about, discuss, or disclose their own pay or the pay of another employee or applicant; however, employees who have access to compensation information as part of their essential job functions may not disclose such information to individuals who do not otherwise have access, unless the disclosure is:
- In response to a formal complaint or charge
- In furtherance of an investigation, proceeding, hearing, or action
- Consistent with the Company’s legal duty to furnish information
Pay: $105,000.00 - $165,000.00 per year
Benefits:
- Dental insurance
- Employee assistance program
- Flexible spending account
- Health insurance
- Health savings account
- Life insurance
- Paid time off
- Referral program
- Retirement plan
- Vision insurance
Location:
- Oak Ridge, TN 37830 (Preferred)
Security clearance:
Ability to Commute:
- Oak Ridge, TN 37830 (Required)
Ability to Relocate:
- Oak Ridge, TN 37830: Relocate before starting work (Preferred)
Work Location: In person