Information System Security Officer II (International Assignment)

About The Position

Requirements

• Active TS/SCI with CI Poly security clearance
• DOD 8570 IAT Level II Profession Certification is required (NOTE: certification must be obtained within 6 months from position start date)
• Bachelor’s Degree with 2+ years of relevant experience. Additional education can count in lieu of years of experience, and additional years of experience can count in lieu of a degree.

Nice To Haves

• Mentor, provide guidance and instructional aide to Associate and Junior ISSOs
• Effective interpersonal and communication skills
• Familiarity with conducting research and analysis, network and information system security principles and best practices
• Ability to establish and maintain effective internal and external working relationships with government and contractor program managers, security professionals, and mission partners.
• Engender rapport with military, civilians, and other contractors at all levels
• Knowledge of information security program management and project management principles and techniques.
• Knowledge of security violation mitigation measures and incident reporting actions.
• Knowledge of computer networking concepts and protocols, and network security methodologies.
• Knowledge of host/network access control mechanisms (e.g., access control list).
• Knowledge of cybersecurity principles used to manage risks related to the use, processing, storage, and transmission of information or data.

Responsibilities

• Perform assessments of systems and networks within the networking environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations (compliance audits) and active evaluations (vulnerability assessments).
• Develops documentation in support of Risk Management Framework (RMF) processes; operating procedures, and policies; Operating within cleared environments performing Information Assurance specific activities to meet client needs and timelines;
• Performing Continuous Monitoring (ConMon) duties in accordance with NIST SP 800-137 (Continuous Monitoring) to include auditing for anomalous or malicious user activity;
• Establish strict program control processes to ensure mitigation of risks and supports for obtaining certification and accreditation of systems. This includes process support, analysis support, coordination support, security certification test support, security documentation support, investigations, software research, hardware introduction and release, emerging technology research inspections, and periodic audits;
• Periodically conducts a review of each system’s audits and monitors corrective actions until all actions are closed;
• Perform Media management activities, handle and have familiarity with controlling, labeling, virus scanning solutions-software and appropriate transfer of data (uploading/downloading) between different classification domains via manual and automated processes.

Benefits

• medical
• dental
• vision
• paid time off
• 401(k)
• life insurance
• flexible work schedules
• holidays