Information Systems Security Officer – TS/SCI required

About The Position

Requirements

• Bachelor's Degree and minimum 10 years of information assurance experience. Degree can be substituted with 4 years of additional experience.
• Candidate must meet DoD 8570 for ISSO Role: CISM, CISSO, FITSP-M, GCIA, GCSA, GCIH, GSLC, GICSP, CISSP-ISSMP or CISSP.
• TS/SCI Required
• US Citizenship Required

Nice To Haves

• Progressively responsible information assurance experience in ICD 503 certification and accreditation.
• Experience with NIST Special Publication 800-37 Revision 1, Guide for Applying the Risk Management Framework to Federal Information Systems‟, Committee on National Security Systems Instructions (CNSSI) 1253, and NIST SP 800- 53 Revisions 3 and 4, SP800-39, SP 800-30.
• Demonstrated experience in transitioning applications to IC Information Technology Environment (ITE) and in-depth knowledge of IC ITE services.
• Strong written and oral communication skills.
• Ability to multi-task and shift with changing priorities and projects.
• Candidates must be willing and able to attain a CI Polygraph for certain positions as determined by the contract.

Responsibilities

• Responsible for supporting Engineering and Operations network solutions and strategic adherence to all aspects of the Information Assurance (IA) program as stipulated by various U.S. Government requirements including (but not limited to): Director of Central Intelligence Directives (DCID), IC Directive (ICD) 503 and associated NIST publications.
• Preparation of Assessment and Authorization (A&A) documents and procedures.
• Interface with other IA team members, other security disciplines (industrial security, physical security, special programs security, etc.), program personnel, and Government security representatives.
• Thorough understanding and application of network security principles, practices, and implementations.
• Working knowledge of cross-functional integration of information systems into a physical security environment.
• Understanding of system methodologies including but not limited to client server, web hosting, web content servers, policy servers, directory servers, firewalls, WAN, LAN, switches, and routers.
• Proficient in the use of tools used to prevent and/or negate malicious code (e.g HBSS, Anti Malware, ACAS).
• Ability to apply a risk management philosophy when faced with security challenges and the ability to articulate the pro’s and con’s in a clear concise manner.
• Strong ability to elicit, articulate, and document information in a well-organized manner.
• Demonstrated ability to correlate audit results between various systems and/or users and notify the ISSM of any discrepancies.

Benefits

• Full-flex work week to own your priorities at work and at home
• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and holidays