Information Systems Security Officer (ISSO)
Tyto Athene, LLC
3d•Remote
About The Position
Tyto Athene is searching for a highly experienced professional to join our organization as a Senior Information Systems Security Officer (ISSO). The candidate will be responsible for handling Information Assurance activities of designated portfolio as part of a large Federal agency shared services offering.
Requirements
- Bachelor’s Degree required
- Minimum of 6 years of relevant experience in functional responsibility
- Thorough understanding & knowledge of NIST Special Publications and SPA&A process
- Strong knowledge of NIST Guidelines & FISMA Cybersecurity compliance requirements
- Thorough knowledge of, and experience with, the NIST 800 series publications
- Significant understanding & experience with CSAM GRC
- FedRAMP process & Cloud environments (Azure, AWS) experience
- Proficiency in writing technical analysis & security briefs
- Strong written & oral communication skills
- Ability to work independently & collaboratively in a team environment
- Excellent interpersonal skills & the ability to lead and manage multiple ongoing projects
- Critical thinking
- Strategy development
- Balancing security requirements with mission needs
- Good judgment and business acumen
- US Citizenship, TS/SCI required
Nice To Haves
- Preferred certifications: CISSP, CISM, Sec+ or equivalent
Responsibilities
- Lead Risk Management Framework Assessment & Authorization (A&A) activities for various information systems
- Implement & manage security controls in accordance with the current revision of NIST 800-53
- Conduct security reviews & tests of assigned systems to verify that security features and controls are functional and effective
- Develop Plan of Action & Milestones (POA&Ms) in response to identified vulnerabilities, and lead remediation efforts
- Develop security documentations to include, but not limited to, System Security Plans (SSPs), Plan of Actions & Milestones (POA&Ms), and other artifacts to support the Body of Evidence (BOE)
- Coordinate security testing exercises to include but not limited to: incident response, disaster recovery & contingency activities
- Review proposed change requests related to system design/configuration and perform a security impact analysis (SIA) to provide approval or denial recommendations
- Support external & internal audits of designated systems
- Develop & present, both verbally and in writing, security briefings to all levels of the organization including senior executives (CIO, DCIO & CISO)
Benefits
- Health/Dental/Vision
- 401(k) match
- Flexible Time Off
- STD/LTD/Life Insurance
- Referral Bonuses
- professional development reimbursement
- maternity/paternity leave
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
