Information Systems Security Officer (ISSO - Onsite)

About The Position

Requirements

• Advanced degree and 3+ years of combined experience in Systems Administration, Systems Engineering, Security/Cybersecurity, Info-Tech/Networking, or Management role supporting classified programs or government regulated environment; OR Bachelor’s degree and 5+ years of relevant industry experience; OR Associate’s degree (or 2-year technical training) and 7+ years of relevant industry experience; OR High School diploma or Military / Technical Training and 9+ years of relevant industry experience.
• Current IAM Level I certification (Security+ or other)
• Active US Government Security Clearance, SECRET level or higher.
• U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance
• Active and transferable U.S. government issued security clearance is required prior to start date.

Nice To Haves

• Active US Government TOP SECRET level security clearance
• Certifications: A+, Network+, Security+, SSCP, and/or CCNA
• Experience working in DoD classified Special Operating Programs and/or laboratory environments
• Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Guide (DAAG), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM), NIST, CNSSI, DoD, or other Government Regulatory compliance standards and/or non-defense regulations such as FAA, Payment Card Industry (PCI), ISO 9001 Quality Management standards, or HIPPA
• Experience with information system security and monitoring tools (i.e. Splunk, Symantec, Ivanti, Tenable, ACAS, HBSS, etc.)
• Experience providing technical security consultation for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers
• Familiarity with large multi-facility networks including various complex components, including Windows and Linux environments
• Experience with interpreting, implementing, and assessing security hardening guides & tools (DISA STIGs/SCAP)
• Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication

Responsibilities

• Work closely with the Information Systems Security Manager (ISSM) to ensure the appropriate operational security posture is maintained for all IS under his/her purview.
• Assessing and monitoring system compliance, auditing, security plan development and delivering information systems security education and awareness.
• Investigating information system security violations and help prepare reports specifying corrective and preventative actions.
• Reviewing and approving (within authority) configuration management requests.
• Conducting technical and administrative assessments.
• Integrating new cybersecurity processes, procedures, and tools.
• Support the creation, review and update of cybersecurity documentation and other technical writing.
• Ensure all users have the requisite security clearances, authorization, need-to-know, and security responsibility awareness before being granted access to the IS.
• Collect, review, document, and archive security relevant logs, reports and files in accordance with the System Security Plan (SSP), reporting any anomalies to the ISSM.
• Assist in performing incident response activities (investigation, collection, reporting, containment, and eradication) as applicable in accordance with incident response policy, plans, procedures, and ISSM guidance.

Benefits

• medical
• dental
• vision
• life insurance
• short-term disability
• long-term disability
• 401(k) match
• flexible spending accounts
• flexible work schedules
• employee assistance program
• Employee Scholar Program
• parental leave
• paid time off
• holidays