Information System Security Specialist III

INFORMATION SYSTEMS SOLUTIONS, INC•Charleston, SC

1d•Onsite

About The Position

Information Systems Solutions, Inc. (ISS) is seeking an Information System Security Specialist III to join their Security Control Assessment (SCA) team, supporting the National Science Foundation (NSF) Office of Polar Programs (OPP) United States Antarctic Program. This role involves day-to-day cybersecurity operations, maintenance, and support of computer systems and networks. The ideal candidate will possess a strong background in policy compliance, excellent problem-solving abilities, and a working knowledge of NIST Special Publications (SP) 800-53 Revision 5, 800-39, and 800-37 for Security Control Assessments. The position requires ensuring the reliability and security of the IT infrastructure for the General Support System for the USA. Travel to onsite locations in Antarctica may be required.

Requirements

Must be a U.S. citizen.
Five (5) years with bachelor’s degree or seven (7) years with HS/GED of practical experience demonstrating competency in Cybersecurity, Legal Compliance, Assessment & Authorization (A&A) or Certification & Accreditation (C&A) related fields.
Working knowledge of the Risk Management Framework (RMF) process.
Proficiency of evaluating security solutions to ensure they meet legal requirements.
Excellent interpersonal skills, ability to work in a team centric environment.
Strong verbal and written communication to effectively express concepts, plans, and presentations.
Strong self-starter requiring minimal supervision.
One of the following certifications (IAT Level II): Security+ CE, GIAC Security Essentials Certification (GSEC), Security Certified Network Professional (SCNP), or System Security Certified Practitioner (SSCP).

Nice To Haves

Ability to organize, prioritize and meet deadlines.
Experience in Team Leadership role.
Certified Information Systems Professional (CISSP) or pathway to certification.
Capable of conveying complex information in a simplistic manner.
Strong critical thinking and problem-solving skills.
Able to take proactive measures to prevent problems rather than reactive by nature.
Secret clearance (preferred).

Responsibilities

Assessment of security policies, procedures and processes against NIST standards.
Review of System Security Plans to report on compliance throughout the organization.
Provide Quarterly Reports of system security metrics.
Oversee implementation of all stages of the Risk Management Framework.
Provide analysis and overviews of legal compliance documents.
Collaborate with other SCA Team Members to assess the Confidentiality, Integrity and Availability of systems.
Advise Program Management on risk levels and security posture.
Recognize possible security violations and takes appropriate action to report the incident, as required.
Conduct reviews of system Contingency Plans through tabletop exercises and simulated live exercises, including review of system Continuity of Operations Plan (COOP).
Ensure cybersecurity security requirements are appropriately identified in system environment operation procedures and collect and maintain data needed to meet system IA reporting requirements.
Evaluate system POA&Ms, tracking milestones.
Prepare Risk Assessment Reports.