Yesterday
Top Secret/SCI
Mid Level Career (5+ yrs experience)
$125,000 - $150,000
Occasional travel
IT - Security
Springfield, VA (On-Site/Office)
We are seeking an Information Systems Security Officer (ISSO). The selected candidate will be responsible for ensuring compliance with the ISSO Roles and Responsibilities as laid out in agency directives, instructions, and memos. Duties and responsibilities include:
Perform tasks delegated by the ISSM in support of various information assurance programs such as security authorization activities in compliance with Risk Management Framework (RMF) policies and procedures including System Security Plans (SSPs), Risk Assessment Reports, A&A packages, and Security Controls Traceability Matrix (SCTM)
Maintains operational security posture to ensure information systems (IS), security policies, standards, and procedures are established and followed
Performs vulnerability/risk assessment analysis to support Assessment & Authorization (A&A)
Review and analyze system audit logs to identify anomalous activity and potential threats to network resources
Conducting vulnerability scans and recognizing vulnerabilities in security systems
Ensure that cybersecurity-enabled products or other compensating security control technologies reduce identified risk to acceptable security levels
Apply a full range of Cybersecurity policies, principles, and techniques to maintain the security integrity of information systems processing classified information
Perform security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk
Work with government customers to support computer security incidents and vulnerability compliance
Input and maintain system documentation into government record-keeping systems Xacta
Provide Configuration Management for security-relevant information system software, hardware, and firmware;
Perform risk analysis whenever an application or system undergoes a major change
Provide input to the Risk Management Framework process activities and related documentation
Required Qualifications:
Must be a US Citizen
Active TS/SCI clearance adjudication, and ability to pass a poly
Bachelor’s degree in a technical (STEM) field of study with 8+ years of relevant experience. Additional 4 years experience may be considered in lieu of degree
A minimum of 8 of experience as an IA/Security Specialist and OMB Information Security directives/policy compliance.
Must hold active Security+, CISSP, CISA, or equivalent certifications (DoD 8570 IAM 2 equivalent)
Experience and in-depth working knowledge of FISMA and NIST Information Security Guides
Understanding of FISMA, NIST, and Office of Management and Budget (OMB) Federal Information System requirements
Advanced written and verbal communication skills
Desired Qualifications:
Experience with effective policy, instruction, and development for Federal or DoD Information Security Programs
Experience with performing Security Control Assessment in compliance with NIST SP 800- 37, NIST SP 800-53, NIST SP 800-53A, and other NIST 800 guide series
Experience with risk analysis and assessment determinations incorporating system/mission owner, and unique operational constraints
CSAM tool experience is preferred
Understanding of FISCAM compliance
Experience with Amazon Web Services (AWS)
Experience with Xacta
Current polygraph
Perform tasks delegated by the ISSM in support of various information assurance programs such as security authorization activities in compliance with Risk Management Framework (RMF) policies and procedures including System Security Plans (SSPs), Risk Assessment Reports, A&A packages, and Security Controls Traceability Matrix (SCTM)
Maintains operational security posture to ensure information systems (IS), security policies, standards, and procedures are established and followed
Performs vulnerability/risk assessment analysis to support Assessment & Authorization (A&A)
Review and analyze system audit logs to identify anomalous activity and potential threats to network resources
Conducting vulnerability scans and recognizing vulnerabilities in security systems
Ensure that cybersecurity-enabled products or other compensating security control technologies reduce identified risk to acceptable security levels
Apply a full range of Cybersecurity policies, principles, and techniques to maintain the security integrity of information systems processing classified information
Perform security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk
Work with government customers to support computer security incidents and vulnerability compliance
Input and maintain system documentation into government record-keeping systems Xacta
Provide Configuration Management for security-relevant information system software, hardware, and firmware;
Perform risk analysis whenever an application or system undergoes a major change
Provide input to the Risk Management Framework process activities and related documentation
Required Qualifications:
Must be a US Citizen
Active TS/SCI clearance adjudication, and ability to pass a poly
Bachelor’s degree in a technical (STEM) field of study with 8+ years of relevant experience. Additional 4 years experience may be considered in lieu of degree
A minimum of 8 of experience as an IA/Security Specialist and OMB Information Security directives/policy compliance.
Must hold active Security+, CISSP, CISA, or equivalent certifications (DoD 8570 IAM 2 equivalent)
Experience and in-depth working knowledge of FISMA and NIST Information Security Guides
Understanding of FISMA, NIST, and Office of Management and Budget (OMB) Federal Information System requirements
Advanced written and verbal communication skills
Desired Qualifications:
Experience with effective policy, instruction, and development for Federal or DoD Information Security Programs
Experience with performing Security Control Assessment in compliance with NIST SP 800- 37, NIST SP 800-53, NIST SP 800-53A, and other NIST 800 guide series
Experience with risk analysis and assessment determinations incorporating system/mission owner, and unique operational constraints
CSAM tool experience is preferred
Understanding of FISCAM compliance
Experience with Amazon Web Services (AWS)
Experience with Xacta
Current polygraph
group id: 91081798
