Senior Information System Security Officer
About The Position
Provides aid to the program, organization, system, or enclave's information assurance program. Lends assistance for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies. Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed. Assists with the management of security aspects of the information system and performs day-to-day security operations of the system. Evaluates security solutions to ensure they meet security requirements for processing classified information. Performs vulnerability/risk assessment analysis to support certification and accreditation. Provides configuration management (CM) for information system security software, hardware, and firmware. Manages changes to system and assesses the security impact of those changes. Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Assists security authorization activities in compliance with Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF).
Requirements
- ACTIVE TS/SCI W/ POLYGRAPH SECURITY CLEARANCE (U.S. CITIZENSHIP REQUIRED)
- Bachelor of Science degree in Computer Science, Information Assurance, Information Security, or related discipline and 12 or more years of related experience.
- Minimum of 7+ years of experience as an ISSO supporting IC or DoD programs and contracts of similar scope, type, and complexity.
- DoD 8570 compliance with IAM Level II or IAT Level III (i.e., CASP, CISSP, or Associate)
Responsibilities
- Proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies.
- Maintaining operational security posture for an information system or program.
- Managing security aspects of the information system and performing day-to-day security operations of the system.
- Evaluating security solutions to ensure they meet security requirements for processing classified information.
- Performing vulnerability/risk assessment analysis to support certification and accreditation.
- Providing configuration management (CM) for information system security software, hardware, and firmware.
- Managing changes to system and assessing the security impact of those changes.
- Preparing and reviewing documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
- Assisting security authorization activities in compliance with Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF).
Benefits
- Health Coverage: Medical, dental, and vision insurance
- Additional Insurance: Basic Life/AD&D, Voluntary Life/AD&D, Short and Long-Term Disability, Accident, Critical Illness, Hospitalization Indemnity, and Pet Insurance
- Retirement Plan: 401(k) plan with company match
- Paid Time Off: Generous PTO, paid holidays, parental leave, and more
- Wellness: Access to wellness programs and mental health support
- Professional Development: Opportunities for growth, including tuition reimbursement
- Flexible work arrangements, including remote work options
- Flexible Spending Accounts (FSAs)
- Employee referral programs
- Bonus opportunities
- Technology allowance
- A diverse, inclusive, and supportive workplace culture
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
11-50 employees
