Information Systems Security Officer Skill Level 3

Onyx Point•Reston, VA

23h•$78,000 - $275,000

About The Position

Collaborate with government clients to thoroughly understand their system architectures, security requirements, and objectives for achieving and maintaining ATO status within the context of government regulations. Conduct exhaustive security assessments and risk analyses that cater to government system compliance, identifying vulnerabilities and potential threats specific to government systems. Monitor security systems, logs, and network traffic with a keen focus on government cybersecurity guidelines, identifying any suspicious activity, intrusions, or unauthorized access attempts. Collaborate closely with cross-functional teams to establish and maintain government-aligned security measures, including firewalls, intrusion detection systems, data encryption, and access controls. Investigate and analyze security incidents to determine their cause, impact, and appropriate response. Develop and implement incident response plans, including containment, eradication, and recovery strategies.

Requirements

Active TS//SCI clearance with CI poly
7+ years of experience as a cybersecurity analyst with a specialization in Government System ATO support, demonstrating deep knowledge of government ATO principles, methodologies, and tools.
Strong experience in government regulatory frameworks, compliance requirements, and security standards specific to ATO (e.g., NIST SP 800-53, RMF, ICD 503, FISMA, FedRAMP, overlays).
Demonstrated and repeat experience achieving and maintaining ATO for data and application solutions in the cloud from IL5 to IL6+ on NIPR, SIPR, and JWICS.
Expertise with government specific ATO assessment tools such as XActa and eMASS, vulnerability scanning tools, and intrusion detection/prevention systems.
Effective communication skills, with the ability to convey complex technical concepts to both technical and non-technical stakeholders.
CISSP or equivalent certification to support DoD 8140 requirements

Responsibilities

Collaborate with government clients to thoroughly understand their system architectures, security requirements, and objectives for achieving and maintaining ATO status within the context of government regulations.
Conduct exhaustive security assessments and risk analyses that cater to government system compliance, identifying vulnerabilities and potential threats specific to government systems.
Monitor security systems, logs, and network traffic with a keen focus on government cybersecurity guidelines, identifying any suspicious activity, intrusions, or unauthorized access attempts.
Collaborate closely with cross-functional teams to establish and maintain government-aligned security measures, including firewalls, intrusion detection systems, data encryption, and access controls.
Investigate and analyze security incidents to determine their cause, impact, and appropriate response.
Develop and implement incident response plans, including containment, eradication, and recovery strategies.

Benefits

Health Coverage: Medical, dental, and vision insurance
Additional Insurance: Basic Life/AD&D, Voluntary Life/AD&D, Short and Long-Term Disability, Accident, Critical Illness, Hospitalization Indemnity, and Pet Insurance
Retirement Plan: 401(k) plan with company match
Paid Time Off: Generous PTO, paid holidays, parental leave, and more
Wellness: Access to wellness programs and mental health support
Professional Development: Opportunities for growth, including tuition reimbursement
Additional Perks: Flexible work arrangements, including remote work options
Flexible Spending Accounts (FSAs)
Employee referral programs
Bonus opportunities
Technology allowance
A diverse, inclusive, and supportive workplace culture