Information Systems Security Officer, Mid
About The Position
The Opportunity: Cyber threats are everywhere, and the constantly evolving nature of these threats can make understanding them seem overwhelming to our clients. In all of this “cyber noise,” how can these organizations understand their risks and how to mitigate them? The answer is you. We need your knowledge as an information security risk specialist to help break down complex threats into manageable plans of action. As an information security risk specialist on our team, you’ll work with clients to discover their cyber risks, understand applicable policies, and develop a mitigation plan. You’ll get technical and personnel details from colleagues to assess the entire threat landscape. Then, you’ll help your team guide your client through a plan of action with presentations, whitepapers, and milestones. You’ll work on translating security concepts for your client so they can make the best decisions to secure their mission-critical systems. This is your opportunity to take an active role in information security while growing your skills in cloud technologies. Be a part of our team as we protect our nation's critical information systems. Join us. The world can’t wait.
Requirements
- 5+ years of experience as an ISSO or Information System Security Analyst (ISSA)
- Experience conducting tools assessments and configuration analysis against best practices, vendor specifications, and government security guidelines and requirements
- Experience with the implementation, oversight, and maintenance of the security configuration, practices, and procedures for systems
- Experience implementing controls from NIST 800-53, FedRAMP, ICD 503, RMF, and DoD Information Levels, including applying them to the design and implementation of information technology solutions to achieve an authorization to operate (ATO)
- Experience with eMASS or Xacta IA Manager
- Ability to perform risk analysis
- Active TS/SCI clearance; willingness to take a polygraph exam
- HS diploma or GED
- DoD 8570 IAM Level II Certification such as CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP Certification
Nice To Haves
- Experience with DoD security technical implementation guides (STIGs), checklists, and testing tools, including STIG Viewer, SCAP, and ACAS scanning tool
- Experience assessing configuration changes such as new COTS tools or web application upgrades, to system security boundary
- Experience with cyber-related tools such as Splunk or STIG Viewer
- Experience with SAP
- Knowledge of Zero Trust principles and concepts
- Ability to work within a collaborative team and a fast-paced and dynamic environment
- Possession of excellent written, organizational, presentation, and verbal communication skills
- AWS, Azure, or GCP Certification
Benefits
- health
- life
- disability
- financial
- retirement benefits
- paid leave
- professional development
- tuition assistance
- work-life programs
- dependent care
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
High school or GED
