Sr. Information System Security Officer

Hill Associates

2d•$115,000 - $120,000•Remote

About The Position

Hill Associates is searching for a Sr. Information System Security Officer (ISSO) to provide consolidated cybersecurity support across a Washington, D.C., federal agency in several different resources that fit the various processes across the organization. The mission of the Enterprise Cybersecurity Group (ECG) is to oversee the agency’s compliance with Federal Information Security Management Act (FISMA) standards and ensure the confidentiality/privacy, integrity, and availability of information, systems, and resources. ECG provides standardized security services and solutions in areas such as Security Authorizations (ATO), ISSO support, and outreach/communication.

Requirements

8+ years of experience in the Information Security field.
BA/BS degree (Equivalent experience considered in lieu of the degree).
Security+ or equivalent is required.
Must have dedicated, distraction-free workspace and reliable, high-speed internet connection.
Must be able to obtain and maintain a Public Security level of clearance.

Nice To Haves

Professional level Cyber Security Certification is highly desired.

Responsibilities

Assist in conducting security control assessments based on NIST SP 800-53 Rev. 4, NIST SP 800-53A Rev. 4, and NIST 800-37 Rev.1.
Support the CISO’s office with tracking all internal ATOs in progress and reviewing the cybersecurity programs of Guarantor Agency and Third-Party services to help guide them through the RMF processes.
Assist with development of Security Assessment Plans (SAPs), Security Assessment Reports (SARs), and Plan of Action and Milestone (POA&M) Reports.
Track/report on system integration statuses, identify task and budget burn rates, and focus on the earned value reporting of ongoing projects against proposed schedules and budgets.
Establish a definitive list of all systems, networks, applications, vendors, etc. that require authorization analysis
Provide support to document and monitor cybersecurity programs and ensure compliance with FISMA, federal, and agency policies.
Maintain awareness of the status and expiration of the current ATOs and initiate action early to ensure the Security Authorization process is completed before the system becomes operational or the current ATO expires.
Coordinate closely with the ISSOs before and during the Security Authorization process to ensure they are aware of requirements, processes, and expectations, and ensure the implementation, continuous monitoring, and testing of security and IA requirements throughout the system life cycle.
Engage with CISO (and designees) to develop an automated method/toolset of collecting data relevant to complete annual organization and strategic budgets.
Track approved and ongoing projects, monitoring for schedule and task compliance, risk realization/avoidance, and critical-path recognition.
Assist in the review of the security impacts of system changes.
Assist in the development of tools and sites for the stakeholders to efficiently manage security processes

Benefits

From the first day of employment, Hill Associates offers a comprehensive benefits program, including medical, dental, vision, life insurance, 401(k), as well as a range of other voluntary benefits.
Paid Time Off (PTO) is offered to regular full-time employees.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume