Yesterday
Top Secret
Mid Level Career (5+ yrs experience)
No Traveling
IT - Security
Quantico, VA (On-Site/Office)
E-INFOSOL LLC is seeking a highly motivated Information Systems Security Officer to be a Full-time employee in Quantico, VA. Come join a team that collaborates across the entire organization to bring the right solution to our customers and drive innovation.
Job Description:
The Information Systems Security Officer will evaluate, advise, and support the documentation, validation, and accreditation processes necessary to ensure new and existing information technology (IT) systems meet the organization’s information assurance (IA) and security requirements. Ensure appropriate treatment of risk, compliance, and monitoring assurance from internal and external perspectives.
Responsibilities:
Advises ITSU and LD leadership team as Information Systems Security Specialist/Officer
Primary representative for cybersecurity matters, including Science and Technology Branch (STB) reporting requirements, data calls, Office of the Chief Information Officer (OCIO) requirements, as well as legal and compliance matters relating to IT security.
Identifies gaps, strategic impacts, financial impacts, and the risk profile in the IT security landscape and provides support and recommendations.
Understands cybersecurity risk management and Authorization to Operation requirements, including legal aspects such as executive order 14028. Understands multifactor authentication, encryption, zero trust, and other aspects of legal requirement and DOJ/FBI recommendation or requirement.
Performs a variety of information security/cybersecurity tasks and activities that are broad in nature and are concerned with LD systems and assets.
Provide leadership in infrastructure migration methodologies and techniques including mass application movements into the cloud including:
Design, implementation, and support of cybersecurity artifacts.
Mentor existing staff on IT and cybersecurity best practices and technology.
Actively participate in IT and security meetings
Manage the ATO process for LD systems and assets, including control implementation and documentation
Inform LD cybersecurity strategy.
Required Experience:
Must be US Citizen with Active Top Secret Clearance
Possessing a range of technical certifications, such as higher-level security-related certifications (CISSP, etc.)
5+ years of practical experience in a Cybersecurity, Engineering, T&E or A&A (formerly C&A) related field.
Proficiency across cybersecurity and IT security matters, including documentation requirements and security control implementation.
Must be able to adjust to constant business changes, including new requirements, evolving goals and strategies, and emerging technologies.
Education:
Bachelor’s degree in computer science, MIS, or equivalent technology discipline and/ or equivalent related development experience in lieu of degree
Required Knowledge, Skills, and Abilities:
Extensive knowledge and experience with the NIST Risk Management Framework and federal Government accreditation processes.
Provides technical support in the areas of vulnerability assessment, risk assessment, network security, product evaluation, and security implementation.
Responsible for designing and implementing solutions for protecting confidentiality, integrity, and availability of sensitive information.
Provides technical evaluations of customer systems and assists with making security improvements.
Participates in design of information system contingency plans and other deliverables which maintain appropriate levels of protection and meet time requirements for minimizing operations impact to customer organization as well as Security Authorization and Assessment (A&A processes).
Conducts security product evaluations, and recommend products, technologies, and upgrades to improve the customers security posture.
Conducts testing and audit log reviews to evaluate the effectiveness of current security measures.
Directs and implements the necessary controls and procedures to cost-effectively protect information systems assets from intentional or inadvertent modification, disclosure, or destruction.
Monitors security of electronic data, applications system usage, networks, and physical environment.
Provides guidance and direction for the physical and virtual protection of information systems assets to other functional units.
Supports all aspects of a Program Information Assurance (IA) processes tailored to include minimum qualification standards, fundamental awareness and familiarity to demonstrate competency with specific experience in Cyber Security, Engineering, Test & Evaluation, (T&E) and/or Security Control Assessor (SCA) under a Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) process.
Demonstrate a working knowledge of the Risk Management Framework (RMF) process and/or include prior experience with the Defense Information Assurance & Certification Accreditation Process (DIACAP).
Familiarity with security policies & guidance documents to assist with the preparation and maintenance of process artifacts, traceability documents purposed for compliance with Authority to Operate (ATO) requirements.
The specialist is expected to evaluate security solutions to ensure they meet security requirements for processing up to classified information and supervise and/or maintain the operational security posture for an information system or program.
More senior specialists may assist or develop system security policy and ensure compliance with change management and configuration control processes. Plan and coordinate the IT security program and policies supporting the command leadership mission and goals.
Strong writing skills to develop and maintain System Security Plans (SSP), Contingency Plans, Privacy Impact Assessments, Certification Reports, Accreditation Reports, Plan of Action & Milestones (POA&M), and other C&A documentation.
Demonstrates oral and written communication skills to work closely with all levels of personnel involved in IT operations and technical aspects of systems.
Desired Skills:
Oversees and manages information security program implementation or other area of responsibility. Informs government strategy, personnel, infrastructure, policy enforcement, emergency planning, security awareness, and/or other resources.
Recommends the necessary resources, including leadership support, financial resources, and key security personnel, to support information technology (IT) security goals, and reduce overall organizational risk.
Use of cyber risk management tools, such as Xacta
About E-INFOSOL:
E-INFOSOL is a Service Disabled and Veteran Owned Small Business (SDVOSB) located in the Washington, D.C. metropolitan area. We are a premiere IT Security, Cloud and Virtualization provider servicing both federal and state government, and private sector customers. Through strategic partnerships with top industry players such as Amazon Web Services (AWS), VMware, Microsoft and Nutanix, we can provide an array of IT products and solutions, combining them with our expertise.
Why E-INFOSOL:
E-INFOSOL has 10 years in the digital world, expanding with new clientele and jobs rapidly. E-INFOSOL is constantly aware of technical changes within IT and wants to ensure future candidates can make a difference with contributing their different skills and knowledge. We offer an array of architectural, engineering, and information technological jobs to a diverse group of candidates. Come join the E-INFOSOL family and be a part of the vast growing culture that contributes to the world.
Full Time Benefits
Medical – 100% company paid for employees with dependent options
Dental and Vision
Retirement Savings (401k) up to 4% match
Health Savings Account (HSA), FSA and DCFSA
Company-paid Short/Long-term disability (w/ additional supplemental options)
Company-paid Life and AD&D (w/ additional supplemental options)
Generous Paid Time Off and ALL 11 Federal Holidays
Legal and Identity Protection Services
Bonuses for certifications and reimbursement
Employee Perks:
UberOne, Company Outings (Sporting events, Happy Hours, etc.), Discounts on services including Pet Insurance
Company Awards:
SBA 8(a) Certified
SDVOSB
GSA Contract Holder
Inc. 5000
Equal Employment Opportunity Policy
E-INFOSOL LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
Website: E-INFOSOL.com
Job Description:
The Information Systems Security Officer will evaluate, advise, and support the documentation, validation, and accreditation processes necessary to ensure new and existing information technology (IT) systems meet the organization’s information assurance (IA) and security requirements. Ensure appropriate treatment of risk, compliance, and monitoring assurance from internal and external perspectives.
Responsibilities:
Advises ITSU and LD leadership team as Information Systems Security Specialist/Officer
Primary representative for cybersecurity matters, including Science and Technology Branch (STB) reporting requirements, data calls, Office of the Chief Information Officer (OCIO) requirements, as well as legal and compliance matters relating to IT security.
Identifies gaps, strategic impacts, financial impacts, and the risk profile in the IT security landscape and provides support and recommendations.
Understands cybersecurity risk management and Authorization to Operation requirements, including legal aspects such as executive order 14028. Understands multifactor authentication, encryption, zero trust, and other aspects of legal requirement and DOJ/FBI recommendation or requirement.
Performs a variety of information security/cybersecurity tasks and activities that are broad in nature and are concerned with LD systems and assets.
Provide leadership in infrastructure migration methodologies and techniques including mass application movements into the cloud including:
Design, implementation, and support of cybersecurity artifacts.
Mentor existing staff on IT and cybersecurity best practices and technology.
Actively participate in IT and security meetings
Manage the ATO process for LD systems and assets, including control implementation and documentation
Inform LD cybersecurity strategy.
Required Experience:
Must be US Citizen with Active Top Secret Clearance
Possessing a range of technical certifications, such as higher-level security-related certifications (CISSP, etc.)
5+ years of practical experience in a Cybersecurity, Engineering, T&E or A&A (formerly C&A) related field.
Proficiency across cybersecurity and IT security matters, including documentation requirements and security control implementation.
Must be able to adjust to constant business changes, including new requirements, evolving goals and strategies, and emerging technologies.
Education:
Bachelor’s degree in computer science, MIS, or equivalent technology discipline and/ or equivalent related development experience in lieu of degree
Required Knowledge, Skills, and Abilities:
Extensive knowledge and experience with the NIST Risk Management Framework and federal Government accreditation processes.
Provides technical support in the areas of vulnerability assessment, risk assessment, network security, product evaluation, and security implementation.
Responsible for designing and implementing solutions for protecting confidentiality, integrity, and availability of sensitive information.
Provides technical evaluations of customer systems and assists with making security improvements.
Participates in design of information system contingency plans and other deliverables which maintain appropriate levels of protection and meet time requirements for minimizing operations impact to customer organization as well as Security Authorization and Assessment (A&A processes).
Conducts security product evaluations, and recommend products, technologies, and upgrades to improve the customers security posture.
Conducts testing and audit log reviews to evaluate the effectiveness of current security measures.
Directs and implements the necessary controls and procedures to cost-effectively protect information systems assets from intentional or inadvertent modification, disclosure, or destruction.
Monitors security of electronic data, applications system usage, networks, and physical environment.
Provides guidance and direction for the physical and virtual protection of information systems assets to other functional units.
Supports all aspects of a Program Information Assurance (IA) processes tailored to include minimum qualification standards, fundamental awareness and familiarity to demonstrate competency with specific experience in Cyber Security, Engineering, Test & Evaluation, (T&E) and/or Security Control Assessor (SCA) under a Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) process.
Demonstrate a working knowledge of the Risk Management Framework (RMF) process and/or include prior experience with the Defense Information Assurance & Certification Accreditation Process (DIACAP).
Familiarity with security policies & guidance documents to assist with the preparation and maintenance of process artifacts, traceability documents purposed for compliance with Authority to Operate (ATO) requirements.
The specialist is expected to evaluate security solutions to ensure they meet security requirements for processing up to classified information and supervise and/or maintain the operational security posture for an information system or program.
More senior specialists may assist or develop system security policy and ensure compliance with change management and configuration control processes. Plan and coordinate the IT security program and policies supporting the command leadership mission and goals.
Strong writing skills to develop and maintain System Security Plans (SSP), Contingency Plans, Privacy Impact Assessments, Certification Reports, Accreditation Reports, Plan of Action & Milestones (POA&M), and other C&A documentation.
Demonstrates oral and written communication skills to work closely with all levels of personnel involved in IT operations and technical aspects of systems.
Desired Skills:
Oversees and manages information security program implementation or other area of responsibility. Informs government strategy, personnel, infrastructure, policy enforcement, emergency planning, security awareness, and/or other resources.
Recommends the necessary resources, including leadership support, financial resources, and key security personnel, to support information technology (IT) security goals, and reduce overall organizational risk.
Use of cyber risk management tools, such as Xacta
About E-INFOSOL:
E-INFOSOL is a Service Disabled and Veteran Owned Small Business (SDVOSB) located in the Washington, D.C. metropolitan area. We are a premiere IT Security, Cloud and Virtualization provider servicing both federal and state government, and private sector customers. Through strategic partnerships with top industry players such as Amazon Web Services (AWS), VMware, Microsoft and Nutanix, we can provide an array of IT products and solutions, combining them with our expertise.
Why E-INFOSOL:
E-INFOSOL has 10 years in the digital world, expanding with new clientele and jobs rapidly. E-INFOSOL is constantly aware of technical changes within IT and wants to ensure future candidates can make a difference with contributing their different skills and knowledge. We offer an array of architectural, engineering, and information technological jobs to a diverse group of candidates. Come join the E-INFOSOL family and be a part of the vast growing culture that contributes to the world.
Full Time Benefits
Medical – 100% company paid for employees with dependent options
Dental and Vision
Retirement Savings (401k) up to 4% match
Health Savings Account (HSA), FSA and DCFSA
Company-paid Short/Long-term disability (w/ additional supplemental options)
Company-paid Life and AD&D (w/ additional supplemental options)
Generous Paid Time Off and ALL 11 Federal Holidays
Legal and Identity Protection Services
Bonuses for certifications and reimbursement
Employee Perks:
UberOne, Company Outings (Sporting events, Happy Hours, etc.), Discounts on services including Pet Insurance
Company Awards:
SBA 8(a) Certified
SDVOSB
GSA Contract Holder
Inc. 5000
Equal Employment Opportunity Policy
E-INFOSOL LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
Website: E-INFOSOL.com
group id: 91078776
