Information System Security Officer

Job Description

• Assists the Information System Security Managers (ISSM) in executing their duties and responsibilities.
• Ensures relevant Cybersecurity (CS) policy and procedural documentation is current and accessible to properly authorized individuals.
• Coordinate cybersecurity processes and activities for assigned systems.
• Maintain and report Assess Only (AO) and Assessment and Authorization (A&A) status to Program Managers, Information System Owners, and ISSMs.
• Provide oversight of Security Plans for assigned systems throughout their lifecycle.
• Manage and maintain Plan of Actions and Milestones (POA&M), ensuring vulnerabilities are properly tracked, mitigated, and where possible, remediated.
• Assist with the identification of security control baselines and applicable overlays.
• Perform Risk Management Framework (RMF) Standard Operating Procedure (SOP) reviews.
• Adjudicate findings from Package Submitting Officer (PSO).
• Register and maintain systems in Enterprise Mission Assurance Support Service (eMASS).
• Plan and coordinate security control testing during Risk Assessments and Annual Security Reviews.
• Ensure the execution of Continuous Monitoring related requirements as defined in the System Level Continuous Monitoring (SLCM) Strategy.
• Review all data produced by Continuous Monitoring activities, update the eMASS record as necessary, and escalate to leadership for action, if required.
• Correlate findings from non-RMF vulnerability assessments (e.g., Development Test (DT)/Operational Test (OT), penetration testing, Command Cyber Operational Readiness Inspection (CCORI), etc.) to RMF controls for tracking, ensuring a holistic risk assessment.
• Participate in change control and configuration management processes.
• Maintain vulnerability data in Vulnerability Remediation Asset Manager (VRAM).

Qualifications

• Bachelor's degree in computer science, information technology, communications systems management, or an equivalent science, technology, engineering & mathematics (STEM) degree from an accredited college or university
• Six (6) years of experience coordinating and enacting required security changes, with in various levels of an organization, ensuring compliance with published policies; conducting cybersecurity vulnerability and threat analysis; and support cyber incident response by isolating potentially effected assets, initial investigation and data collection

Pay & Benefit Highlights

Compensation

• Above market fixed salary or hourly pay.
• Up to $10,000 bonus for each referral.
• Additional bonuses for exceptional performance, assisting with business development and company growth.

Health

• 100% paid premiums for health insurance. Choose from over 80 gold-level medical plans from Aetna, CareFirst, Kaiser and UnitedHealthcare. Choose from PPO, EPO, POS, HMO, and HSA-compatible.
• HSA and FSA options.
• 100% paid premiums for dental insurance.
• 100% paid premiums for vision insurance.

Income Protection

• 100% paid premiums for short-term disability.
• 100% paid premiums for long-term disability.
• 100% paid premiums for accidental death & dismemberment.
• 100% paid premiums for life insurance with a $200,000 max benefit.

Retirement

• 8% company contribution to 401k with immediate vesting.
• 401k pre-tax and Roth options.

Leave

• Up to 20 days of flexible paid time off (PTO).
• 11 days of paid floating holidays.

Work-Life Balance

• Flexible work schedules including flex time and compressed work period.
• Remote work including partial or fully remote (contract and project-dependent).

View our detailed

Equal Opportunity Employer

Base-2 Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.