Specialist, Information System Security Officer (ISSO)
About The Position
Experienced Information System Security professional with proficient cybersecurity knowledge who can work under general supervision from the Information System Security Manager (ISSM). Works closely with applicable Information System Owner(s), information systems engineers, program management and engineering to explain and interpret cybersecurity processes, practices, and procedures. Recommends enhancements to information systems and related processes. Provides protection and safeguarding of information systems and is assigned responsibility for the day-to-day security operations of multiple systems. Candidate must be knowledgeable in information technology, information system security, and the Risk Management Framework.
Requirements
- Bachelor’s Degree and minimum 4 years of prior relevant experience. Graduate Degree and a minimum of 2 years of prior related experience. In lieu of a degree, minimum of 8 years of prior related experience
- Active TS/SCI security clearance
- Minimum DoD 8570 Baseline Certification IAM Level I; i.e. Security+ CE or the ability to obtain within 6 months of hire
Nice To Haves
- Active TS/SCI security clearance (w. CI Polygraph preferred)
- 4+ years’ experience as an ISSO supporting or managing cybersecurity on classified systems
- Experience developing, managing, providing evidence to close POA&Ms associated with the A&A and project management processes
- Able to work well as part of a team
- Strong time management skills
- Experience with building and maintenance networking equipment (Router, Switch, Firewall)
- Experience with Microsoft and Linux based operating systems
- Experience reviewing logs on workstation, server, firewall, & IPS/IDS
- Experience with DISA STIGs and SCAP Compliance Checker
- Experience interpreting vulnerability scanning results (Nessus, ACAS, etc.)
- High level of personal motivation and initiative to learn and acquire new skills
- Experience with ServiceNow CRM
- Experience with DAAPM, JSIG and ICD 503 based authorization and accreditations
Responsibilities
- Authoring and maintaining Body of Evidence (BOE) artifacts in support of Assessment & Authorization (A&A) of assigned systems in accordance with Risk Management Framework (RMF)
- Information System Auditing
- Performing security control assessments
- Overseeing and managing information system configuration management
- Working with IT organization to develop device and system hardening guides following DISA and NIST guidelines
- Conducting periodic hardware/software inventory assessments
- Conducting continuous monitoring activities on assigned information systems
- Remediating control deficiencies
- Investigating security incidents such as data spills and malicious events compromising information
- Assisting the ISSM in meeting their duties and responsibilities
Benefits
- healthy and disability insurance
- 401 (k) match
- flexible spending accounts
- EAP
- education assistance
- parental leave
- paid time off
- company-paid holidays
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
5,001-10,000 employees
