Information System Security Officer

About The Position

Requirements

• At least two years performing assessment and authorization duties for a DoW system using the eMASS platform
• Excellent knowledge of NIST 800-53 security controls and their application, and working knowledge of NIST 800-144 guidelines on security and privacy in public cloud computing
• Experience applying FedRAMP frameworks to ensure compliance with 800-53 and other relevant guidance for DoD/DoW applications hosted in the cloud
• DoD 8570/8140 compliant with IAT 2/3 certification and training, such as Sec+, CISSP, other
• Maintain at least a secret clearance
• Be on site in Stafford, VA four days/week
• FILLING THIS POSITION IS CONTINGENT UPON FUNDING
• U.S. CITIZENSHIP AS WELL AS, A U.S. GOVERNMENT SECURITY CLEARANCE AT THE INTERIM SECRET LEVEL WITH TOP SECRET ELIGIBILITY

Nice To Haves

• Technical understanding of Azure security fundamentals, demonstrated by experience or certification
• Familiarity with Agile frameworks, specifically Scaled Agile Framework (SAFe)

Responsibilities

• Overseeing security operations for STIG checks
• ACAS scans
• Applying and assessing the NIST 800-53 security controls
• POAM development
• Privacy impact analysis and other supporting artifacts
• Leading the efforts for initial self-assessment and subsequent IV&V of a solution hosted in Azure and analyzing the security assessment report to identify gaps, prioritize risks, and advertise next steps in the POAM
• Performing remediations as able, and coordinating with system engineers, network engineers, and other stakeholders to ensure security controls are effectively implemented

Benefits

• medical
• dental
• vision plans
• 401(k) with a company match
• life insurance
• vacation and sick paid time off accruals starting at 10 days of vacation and 5 days of sick leave annually
• 11 paid holidays
• tuition reimbursement
• a work environment that encourages excellence