Information System Security Officer ISSO

About The Position

Requirements

• At least 5-to-10-years of experience
• Familiarity with network and information system security principles and best practices.
• In-depth knowledge of the Risk Management Framework (RMF), the NIST publications, and the DHS 4300A Policy Directive.
• Experience with implementing the NIST 800-53 Security Controls in an Assessment & Authorization (A&A) process.
• Experience reviewing Nessus scans, managing vulnerability mitigation and information security process in an Enterprise environment.
• Basic understanding of Enterprise networking concepts.
• Ability to work well within a team environment and build rapport with government and customer organizations.
• Background Investigation is required
• U.S. Citizen

Nice To Haves

• Certifications, such as Network+ and Security +, CISSP and Security auditing are recommended.

Responsibilities

• Information System Security Officer (ISSO) acts as the Designated Person(s) assigned to one or more existing FISMA Systems of Record as well as new IT Systems that are slated as new work products to develop an Authority to Operate (ATO) and follow-on Continuous Monitored system.
• As a Designated ISSO, they will sign a DHS sponsored Letter that lays out the roles and responsibilities of the ISSO function to maintain daily compliance requirements.
• The ISSO will report to the government Program Manager, government Technical POC / Task Manager.
• The Contractor shall also keep the designated government Information System Security Manager (ISSM), and COR informed.
• Due to the importance of keeping system(s) updated to meet FISMA guidelines, while supporting DHS/CISA directives around limiting vulnerabilities, the ISSO role is of upmost importance throughout its lifecycle.

Benefits

• We offer our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays.