Information System Security Officer

About The Position

Requirements

• Must have an active DoW security clearance at the Secret level.
• Bachelor’s Degree in applicable discipline, additional experience may be substituted for the degree.
• 3-10 years’ experience as a system administrator and/or ISSO supporting Windows and Linux environments.
• Self-starter who can learn new tasks on their own based on available DoW and organization guidance.
• Professional team player able to deliver services and support on schedule in a dynamic, fast-paced work environment.
• Experience implementing security configuration requirements on Windows and Linux systems based on Security Technical Implementation Guide (STIG) standards.
• Experience implementing Windows and Linux patch management following the DoW Information Assurance Vulnerability Management (IAVM) Program standards.
• Experience conducting information system continuous monitoring using Security Information and Event Management (SIEM), and Endpoint Security automation tools for detection and analysis of potential security events/incidents.
• Experience preventing, detecting, analyzing, and responding to security events/incidents per the organization’s Incident Response Plan.

Nice To Haves

• Active Top Secret DoW security clearance
• Experience with DoW/DAF cybersecurity requirements and Risk Management Framework (RMF) authorization process ISSO tasks.
• Experience executing information system RMF continuous monitoring activities and reporting.
• Experience executing cybersecurity incident response processes and reporting requirements.
• Experience documenting system authorization requirements in the Enterprise Mission Assurance Support Service (eMASS), and conducting vulnerability management tasks using Assured Compliance Assessment Solution (ACAS).
• Experience conducting Security Technical Implementation Guide (STIG) compliance scans and analyzing the results, and monitoring information system security baselines.

Responsibilities

• Provide advisory and assistance services in support of the implementation of cybersecurity safeguards while developing, coordinating, and implementing short- and long-term strategies during system acquisition activities.
• Assist ISSMs in performing, assessing, reporting, and managing Interim Authority to Test (IATT) and Authority to Operate (ATO) initial and recurring authorization tasks.
• Conduct, analyze, and report the results of cybersecurity continuous monitoring activities using automation tools for system configuration management (Security Technical Implementation Guide (STIG)), vulnerability management, and endpoint security.
• Interpret and implement all applicable cybersecurity policies, instructions, and procedures IAW current DoD, DAF, 96 Test Wing, 96 Range Group, and Squadron guidance.
• Achieves and maintains DoD Workforce Systems Security Analyst Intermediate or higher cybersecurity certification(s) (e.g., Security+, Network+, Cloud+, CCSP, etc.).
• Assist the government cybersecurity Contract Officer Representative (COR) in conducting information system assessments to verify delivery of contract requirements.
• Assist the ISSM in conducting risk assessments and identifying applicable mitigations to reduce the residual cybersecurity risk associated with known vulnerabilities.
• Communicate effectively with both technical and non-technical audiences.

Benefits

• Positive work environment
• Teamwork
• Professional growth
• Innovation
• Community involvement
• Flexible scheduling
• Family-friendly work environment