Information Systems Security Officer

About The Position

Requirements

• Graduate Degree and a minimum of 5 years of prior related experience. Or, Bachelor’s Degree in discipline (STEM) and minimum 5 years of prior relevant experience.
• Currently possess an active DoD 8570.01-M IAT level II certified credentials (e.g., SEC+)
• Working knowledge of security standards and frameworks, rules and regulations, and system trust principals, such as, FIPS, NIST SP 800 Series, JSIG, DAAPM, and/or ICD.
• Experience managing cybersecurity requirements operating in collateral, Special Access Programs (SAP) and /or Specialized Compartmentalized Information (SCI) environments for an enterprise/major business portfolio of programs.
• Experience successfully interfacing with internal/external customers (DCSA, AO/DAO, GCAs, IT, Program Managers, Program Engineering, Cyber Architects/Engineers, etc.)
• Experience with the authorization and approval (A&A) of classified information systems
• Excellent communications skills, oral and written
• Demonstrated strong critical thinking and problem-solving skills
• Self-motivated and possesses good written, verbal, listening and presentation skills, particularly in documenting evaluation results
• Confident personality with the ability to effectively prioritize multiple projects
• Ability to work with people in a team environment and deal effectively with changing project priorities
• Due to U.S. Government contract requirements, only U.S. citizens are eligible for this role.
• Ability to travel up to 50%

Nice To Haves

• Working knowledge of Windows and Linux environments
• Experience with SIEM and Compliance scanning tools (e.g., Splunk, Nessus, ACAS, SCC SCAP, Solar Winds, STIG Viewer, Vulnerator, etc.)
• Self-driven and results-oriented capable of effectively working multiple tasks concurrently and across an ambiguous and uncertain landscape

Responsibilities

• Interpret the Defense Counterintelligence and Security Agency Assessment and Authorization Process Manual (DAAPM) in determining technical Information Assurance (IA) requirements, conduct cyber risk assessment activities including vulnerability analysis, analysis of mitigation solutions and ensure proper security implementation of the Risk Management Framework (RMF).
• Assist program personnel at offsite locations to ensure they meet USG certification requirements and are properly trained to execute the cybersecurity program effectively and maintain security compliance
• Develop system documentation for information system authorization, security management, and continuous monitoring of both networked and standalone information systems.
• Ensure that selected security controls are implemented and operating as intended during all phases of the information system/A&A lifecycle.
• Coordinate and participate in continuous monitoring activities in accordance with DoD requirements by monitoring security infrastructure and security alarm devices for Indicators of Compromise (IOC) utilizing SIEM and cybersecurity toolsets.
• Perform hardware/software configuration management
• Assist with technical investigative activities, data integrity containments and assist with reports of investigation for IA related security events.
• Coordinate with cyber systems security engineers, system architects, and developers to provide oversight in the development of secure technical solutions.
• Participate in implementation of current and future security domains and architectures including those which may introduce new service areas.
• Conduct system audits and compliance/vulnerability scans and interpret results
• Travel to offsite locations to establish RMF requirements and provide ATO artifacts to the customer

Benefits

• Comprehensive and competitive benefits package and flexibility that promotes work-life balance
• A work environment where all employees are valued, respected and safe
• Freedom to succeed by enabling team members to deliver, take initiatives and make decisions
• Recognition, professional development, advancement and having fun!