Information System Security Officer (ISSO)

About The Position

Requirements

• Ability to obtain a Public Trust clearance is required for consideration.
• Bachelor’s or Master’s degree in Engineering, Computer Science, Information Systems, Cyber Security, or related discipline. Education substitution requires 10+ years’ experience supporting IT systems information and system security operations.
• 8+ years’ experience as an ISSO, information security, or cybersecurity role supporting unclassified and/or classified systems responsible for the cybersecurity of IT networks, systems, and applications.
• Experience implementing NIST and/or DoD cybersecurity policy and guidelines.
• Experience completing the Authority to Operate (ATO) process for Government systems.
• Experience using Enterprise Mission Assurance Support Service (eMASS), which is the DoD web-based system for cybersecurity management and system Accreditation.
• Experience reviewing vulnerability scans, planning risk mitigations, and coordinating/tracking the implementation of vulnerability solutions.
• Must possess and maintain at least one of the following certifications: International Information Systems Security Certification Consortium (ISC²), Certified Information Systems Security Professional (CISSP), the Global Information Assurance Certification (GIAC) [SANS] Information Security Professional (GISP), or the Computing Technology Industry Association (CompTIA) Advanced Security Practitioner (CASP) or other certifications exemplifying skill sets such as those described in DoD Instruction 8570.1 IAM Level III proficiency.

Responsibilities

• Plans, develops, and analyzes security measures to protect critical information from counter-threats and possible attacks.
• Protects sensitive information by ensuring required software is functioning and being used correctly.
• Researches new methods to improve digital security and eliminate vulnerabilities.
• Monitors and reviews user access logs and provides user usage reports to management.
• Audits operations to ensure compliance with government regulations.
• Evaluates and recommends the installation, modification and replacement of hardware or software components.
• Responsible for ensuring that the appropriate operational security posture is maintained for each assigned information system.
• Responsible for the day-to-day implementation, oversight, and maintenance of the security configuration, practices, and procedures for each product under the ISSO's purview in accordance with USCG and federal policies and guidelines.
• Security operations and management (including access control and other policy implementation).
• Security planning/documentation (i.e. SSP, ATO, etc.).
• Security monitoring and evaluation (including audit, assessment, and risk management).
• Security awareness and training.
• Security incident reporting and response management (i.e., POA&Ms, etc.).

Benefits

• medical
• dental
• vision
• life insurance
• 401(k)
• Paid Time Off (PTO)