Today
Public Trust
Mid Level Career (5+ yrs experience)
$150,000 and above
No Traveling
IT - Security
Aurora, CO (Off-Site/Hybrid)
Description
The ISSO candidate should have a good understanding of DoD RMF, NIST SP 800-53 security controls, and a working knowledge of eMASS. Working with the guidance provided by the ISSM and the PMO, the ISSO is accountable for the security posture of the program’s assets and services. The ISSO will advise and lead the Cybersecurity Team to ensure compliance with the program’s cybersecurity requirements.
Specific job duties:
· Perform all security related tasks for program assets and services.
· Provide cybersecurity expertise to all program staff and stakeholders.
· Maintain the program’s instance of eMASS for RMF accreditation packages.
· Implement and assess security controls to safeguard program assets and to mitigate risks.
· Develop, maintain, and update security policies, procedures, plans, memos, and other RMF-related documents.
· Coordinate annual security reviews with the technical teams and track open issues until completion.
· Ensure the Cybersecurity Team maintains and manages continuous monitoring tasks.
· Maintain awareness of DISA STIG/SRG and ensure updates are provided to technical teams as needed. Manage all required DISA STIG/SRG checklists for all systems and collaborate with technical staff, project managers and PMO to resolve findings.
· Collaborate with technical teams to review, design, and deploy secure software and systems.
· Review ACAS reports to ensure the applicability of IAVAs and vulnerabilities, collaborate with technical teams and software vendors to educate and resolve applicable CVEs, and track the implementation of software fixes.
· Participate in change management meetings and speak to security-related concerns regarding the suggested implementation changes.
· Recommends information assurance/security solutions to support customer’s requirements.
· Attend all required weekly or monthly meetings as needed.
· Maintain and submit program deliverables and Cybersecurity reports to ISSM and PMO.
Skills
RMF, Security, Emass, NIST, Information assurance, Security+, CISSP, Cyber security, Risk management, Information security, STIG, ACAS, IAVA, Project Management, Clearance
Top Skills Details
Rmf,Security, Emass, NIST, Information assurance, Security+, CISSP, Cyber security, Risk management, Information security, STIG, ACAS, IAVA
Additional Skills & Qualifications
· Candidate must have have experience advising and leading a cyber team to ensure compliance with cyber requirements.
· Bachelor’s degree from an accredited university in a related field (computer science, engineering, or information systems).
· Minimum 5 years of experience in planning, documenting, and resolving security and information assurance issues on a technical program.
· Excellent communication skills, both orally and with written communications.
· Candidates MUST meet the DoD 8140/8570 Cyber Workforce Requirements.
· Must have or be able to obtain NACLC T3 or Public Trust clearance.
Experience Level
Expert Level
The ISSO candidate should have a good understanding of DoD RMF, NIST SP 800-53 security controls, and a working knowledge of eMASS. Working with the guidance provided by the ISSM and the PMO, the ISSO is accountable for the security posture of the program’s assets and services. The ISSO will advise and lead the Cybersecurity Team to ensure compliance with the program’s cybersecurity requirements.
Specific job duties:
· Perform all security related tasks for program assets and services.
· Provide cybersecurity expertise to all program staff and stakeholders.
· Maintain the program’s instance of eMASS for RMF accreditation packages.
· Implement and assess security controls to safeguard program assets and to mitigate risks.
· Develop, maintain, and update security policies, procedures, plans, memos, and other RMF-related documents.
· Coordinate annual security reviews with the technical teams and track open issues until completion.
· Ensure the Cybersecurity Team maintains and manages continuous monitoring tasks.
· Maintain awareness of DISA STIG/SRG and ensure updates are provided to technical teams as needed. Manage all required DISA STIG/SRG checklists for all systems and collaborate with technical staff, project managers and PMO to resolve findings.
· Collaborate with technical teams to review, design, and deploy secure software and systems.
· Review ACAS reports to ensure the applicability of IAVAs and vulnerabilities, collaborate with technical teams and software vendors to educate and resolve applicable CVEs, and track the implementation of software fixes.
· Participate in change management meetings and speak to security-related concerns regarding the suggested implementation changes.
· Recommends information assurance/security solutions to support customer’s requirements.
· Attend all required weekly or monthly meetings as needed.
· Maintain and submit program deliverables and Cybersecurity reports to ISSM and PMO.
Skills
RMF, Security, Emass, NIST, Information assurance, Security+, CISSP, Cyber security, Risk management, Information security, STIG, ACAS, IAVA, Project Management, Clearance
Top Skills Details
Rmf,Security, Emass, NIST, Information assurance, Security+, CISSP, Cyber security, Risk management, Information security, STIG, ACAS, IAVA
Additional Skills & Qualifications
· Candidate must have have experience advising and leading a cyber team to ensure compliance with cyber requirements.
· Bachelor’s degree from an accredited university in a related field (computer science, engineering, or information systems).
· Minimum 5 years of experience in planning, documenting, and resolving security and information assurance issues on a technical program.
· Excellent communication skills, both orally and with written communications.
· Candidates MUST meet the DoD 8140/8570 Cyber Workforce Requirements.
· Must have or be able to obtain NACLC T3 or Public Trust clearance.
Experience Level
Expert Level
group id: 10105424
Accelerating IT transformation in the public sector
