Sr. Information Systems Security Officer
About The Position
2HB Incorporated is seeking a Senior Information Systems Security Officer to support its government customer in Annapolis Junction, MD. Responsibilities Include: Enhancing security posture by supporting the program, organization, system, or enclave’s information assurance initiatives and enforcing security policies, standards, and methodologies. Overseeing security operations for information systems, managing daily security aspects, evaluating security solutions for classified processing, and conducting vulnerability and risk assessments for accreditation. Managing configuration and system integrity by administering configuration management (CM) for security software, hardware, and firmware, ensuring compliance with security controls, and assessing the impact of system changes. Developing and maintaining security documentation, including System Security Plans (SSPs), Risk Assessment Reports, Certification & Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Ensuring compliance with security authorization activities following the Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF). Providing technical expertise in security policies and operations, supporting the implementation and maintenance of security measures, and collaborating with stakeholders to strengthen the security posture. Driving continuous improvement by assessing existing security processes, identifying vulnerabilities, and implementing proactive solutions to enhance system resilience.
Requirements
- Bachelor of Science degree in Computer Science, Information Assurance, Information Security, or a related discipline, plus 12+ years of relevant experience.
- In lieu of a degree, an additional 4 years of experience may be considered on a case by case basis.
- 7+ years of ISSO experience supporting IC or DoD programs and contracts of similar scope, type, and complexity.
- Experience with customer Info Security tool suite, as well: Latteart, Biscoti, Xacata
- DoD 8570 compliance with IAM Level II or IAT Level III (CASP, CISSP, or Associate).
- TS/SCI/Full Scope Polygraph Clearance.
Responsibilities
- Enhancing security posture by supporting the program, organization, system, or enclave’s information assurance initiatives and enforcing security policies, standards, and methodologies.
- Overseeing security operations for information systems, managing daily security aspects, evaluating security solutions for classified processing, and conducting vulnerability and risk assessments for accreditation.
- Managing configuration and system integrity by administering configuration management (CM) for security software, hardware, and firmware, ensuring compliance with security controls, and assessing the impact of system changes.
- Developing and maintaining security documentation, including System Security Plans (SSPs), Risk Assessment Reports, Certification & Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
- Ensuring compliance with security authorization activities following the Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF).
- Providing technical expertise in security policies and operations, supporting the implementation and maintenance of security measures, and collaborating with stakeholders to strengthen the security posture.
- Driving continuous improvement by assessing existing security processes, identifying vulnerabilities, and implementing proactive solutions to enhance system resilience.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
