Information Systems Security Officer (ISSO)

Oasys•San Miguel, CA

3d•Onsite

About The Position

Information Systems Security Officer (ISSO) OASYS, INC., a Leading-Edge Government contractor, is seeking applicants for a Information Systems Security Officer (ISSO) position to support our Army customer at Camp Roberts in San Miguel, CA. Job Responsibilities include: The successful candidate will serve as the ISSO in support of assigned systems, ensuring full compliance with RMF, DoDI 8510.01, and NIST SP 800-53 security control baselines, and manage the overall security related policies, procedures, laws and regulations; create, document and implement various security plans and compliance documents to enforce Information Assurance principles of Army systems. Will develop, maintain, and manage Security Authorization and Assessment packages that include System Security Plans (SSP), Contingency Plans (CP), POA&Ms, and other relevant security documentation for existing and new systems. Will conduct both technical and non-technical internal audits and testing to validate system and operational requirements compliance; document, organize, and implement security control requirements; identify current and new risks; and prepare vulnerability test plans and coordinate the testing and result procedures. Will conduct analysis to ensure the proper Security Technical Implementation Guides (STIGs) for each system component are applied. Register the system in eMASS to support the Risk Management Framework (RMF) process and input eMASS entries on all required and applicable RMF controls. Lead the development of the RMF package to achieve an Authority to Operate (ATO) and in the development of the SSP and required artifacts/documentation under RMF.

Requirements

Bachelors Degree or higher, additional years of experience may be substituted for degree
3-10 years of ISSO type experience
Experience with all steps of the ATO process
eMASS experience
Security+, or other DoD 8570/8140 IAT Level II certification
Ability to work on-site daily
A high-level performer with the ability to be proactive and respond rapidly to changing conditions in a fast-paced environment
Candidates should possess a bachelor's degree, preferably in Engineering, Cyber, Computer Information Systems, Computer Science, Math, Physics, or other STEM discipline however, years of experience may be substituted for a degree
Candidates must have the ability to obtain and maintain a DoD Secret Clearance

Nice To Haves

Any of these Certifications: CISSP, or other Level III certification
An Active Secret Clearance is highly desired

Responsibilities

Serve as the ISSO in support of assigned systems, ensuring full compliance with RMF, DoDI 8510.01, and NIST SP 800-53 security control baselines, and manage the overall security related policies, procedures, laws and regulations
Create, document and implement various security plans and compliance documents to enforce Information Assurance principles of Army systems
Develop, maintain, and manage Security Authorization and Assessment packages that include System Security Plans (SSP), Contingency Plans (CP), POA&Ms, and other relevant security documentation for existing and new systems
Conduct both technical and non-technical internal audits and testing to validate system and operational requirements compliance
Document, organize, and implement security control requirements
Identify current and new risks
Prepare vulnerability test plans and coordinate the testing and result procedures
Conduct analysis to ensure the proper Security Technical Implementation Guides (STIGs) for each system component are applied
Register the system in eMASS to support the Risk Management Framework (RMF) process and input eMASS entries on all required and applicable RMF controls
Lead the development of the RMF package to achieve an Authority to Operate (ATO) and in the development of the SSP and required artifacts/documentation under RMF