Information Systems Security Officer (ISSO)

About The Position

Requirements

• Bachelor’s degree in a related technical discipline
• At least 2 years of related Information Assurance experience
• Knowledge of RMF process
• Working knowledge of eMASS and EITDR
• Current DoD 8570 IAM Level 2 certification (CAP, GSLC, CISM, CASP, or CISSP), or the certification must be obtained within 6 months of hire
• Must live within one (1) hour of Wright Patterson Air Force Base
• Must be able and willing to travel up to 10%
• Must be able and willing to physically exert up to 10 lbs. of force to lift, carry, push, pull or otherwise move objects.
• This position is otherwise sedentary, involving sitting most of the time but may involve walking or standing for brief periods of time.
• Must have an Active Secret US Government Clearance.
• Note: US Citizenship is required to maintain a Secret Clearance.

Nice To Haves

• Master’s degree in a related technical discipline

Responsibilities

• Develop a Security Assessment Plan (SAP) for each release
• Initiate protective or corrective measures when an IA incident or vulnerability is discovered
• Ensure that IA and IA-enabled software, hardware, and firmware comply with appropriate security configuration guidelines
• Provide support ensuring the records are up to date, including updating the DoD Artifacts (DoD Architecture Framework Documentation)
• Ensure that DoD information system recovery processes are monitored, and that IA features and procedures are properly restored
• Ensure that all DoD information system IA-related documentation is current and accessible to properly authorized individuals
• Implementation and guidance on all DoD information system IA policies and procedures, defined in NIST 800-53 and DoD 8510.01
• Record Plan of Action and Milestones (POA&M) entries into eMASS
• Assist the Information System Security Manager (ISSM) in meeting the duties and responsibilities outlined below:
• Develop and maintain an organization or DoD information system-level IA program that identifies IA architecture, IA requirements, IA objectives and policies; IA personnel; and IA processes and procedures.
• Ensure that information ownership responsibilities are established for each DoD information system, to include accountability, access approvals, and special handling requirements.
• Maintain a repository for all IA certification and accreditation documentation and modifications.
• Ensure that compliance monitoring occurs and review the results of such monitoring.
• Ensure that IA inspections, tests, and reviews are coordinated.
• Ensure that incidents are properly reported to the AO/AODR and the DoD reporting chain, as required, and that responses to IA-related alerts are coordinated
• Provide support with Financial Information Audit Readiness (FIAR) requirements.
• Assist in the Continuous Monitoring Strategy of the IT system.
• Assist Information System Security Manager with Financial Improvement and Audit Readiness (FIAR) inspections and document requests.
• Adhere to all current IA and Cybersecurity regulations in the event that the aforementioned documentation is superseded or replaced.
• Support the maintenance and sustainment of the Information Assurance.
• Adhere to all relevant and current DoD, AF, and NIST regulations in the event that the aforementioned documentation is superseded or replaced.
• Review security control assessment procedures including the review and updating of STIG results.
• This list is not intended to be all-inclusive and may be expanded to include other duties and responsibilities.

Benefits

• Health, dental, and vision insurance
• Paid time off and holidays
• Retirement benefits (including 401(k) matching)
• Educational reimbursement
• Parental leave
• Employee stock purchase plan
• Tax-saving options
• Disability and life insurance
• Pet insurance