Information Systems Security Officer, Senior

About The Position

Requirements

• Top Secret SCI Clearance
• 5 - 7 years of experience
• Prior in roles such as System, Network Administrator or ISSO
• IAM Level III certification (e.g. CISSP or CISSM)
• Possess extensive experience and is responsible for ensuring the appropriate operational security posture is maintained for an information system and as such, work in close collaboration with the ISSM and ISO.
• Have the detailed knowledge and expertise required to manage the security aspects of an information system and, in many organizations, is assigned responsibility for the day-to-day security operations of a system.
• Must be familiar with DoD policy as it applies to implementing and executing system and network administration.
• Strong understanding of network security principles and practices.
• Experience solving technical problems quickly and identifying opportunities to automate repetitive processes
• Ability to work independently and as part of a team.
• Detail-oriented with a commitment to accuracy and quality.
• Experience with NIST SP 800 series and DoDI/D 8500 series

Nice To Haves

• SAP eligible
• JSIG Experience

Responsibilities

• Ensure the appropriate operational security posture is maintained for an information system and as such, works in close collaboration with the ISSM and ISO.
• Conduct periodic reviews of information systems to ensure compliance with the security authorization package.
• Develop physical or logical topologies for a system, assist the ISSM in meeting their duties and responsibilities
• Assist the ISSM in meeting their duties and responsibilities
• Prepare, review, and update authorization packages
• Ensure approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media
• Conduct periodic reviews of information systems to ensure compliance with the security authorization package
• Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM and AO/DAO prior to the change
• Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly
• Ensure all IS security-related documentation is current and accessible to properly authorized individuals
• Ensure audit records are collected, reviewed, and documented (to include any anomalies)
• Attend required technical and security training (e.g., operating system, networking, security management) relative to assigned duties
• Execute the cyber security portion of the self-inspection, to include provide security coordination and review of all system assessment plans
• Identify cyber security vulnerabilities and assist with the implementation of the countermeasures for them
• Prepare reports on the status of security safeguards applied to computer systems
• Perform ISSO duties in support of in-house and external customers
• Conduct security impact analysis activities and provide to the ISSM on all configuration management changes to the authorization boundaries
• Conduct continuous monitoring activities for authorization boundaries under your preview
• Assist Department of Defense, National Agency and Contractor organizations with all RMF efforts