Information Systems Security Officer (ISSO)

Radiance Technologies is an employee-owned company with benefits that are unmatched by most companies in the Huntsville, AL area. Employee ownership, generous 401K, full health/dental/life/vision insurance benefits, educational reimbursement, competitive salaries, interesting assignments, and a pleasant work environment combine to make Radiance Technologies a great place to work and succeed.

We are currently seeking an Information Systems Security Officer (ISSO). Responsibilities include, but are not limited to:

• Implementation of System Security Plans (SSP), Standard Operating Procedures (SOP), information security policies and the development of information system artifacts, as necessary, to ensure compliance with RMF guidelines.

• Overseeing the compliance of security settings for operating systems, to include Windows, Unix/Linux, etc. on classified information systems under his / her purview.

• Ensuring proper measures are taken when an information system incident or vulnerability is discovered.

• Managing and executing the information security continuous monitoring program.
• Ensuring configuration management policies and procedures for authorizing the use of
  hardware / software on an information system is followed and assess changes to the
  system, its environment, and operational needs that could affect the security authorization for an information system.

• Conduct risk assessments as required on systems/networks IAW DoD, NSA, DISA, DIA and other agency regulations and policies governing information systems security.

• Respond to information system incidents, perform initial evaluation of each incident, begin corrective measures, and report incidents to ISSM.
• Responsible for the auditing and monitoring of information systems to support program operations and required continuous monitoring activities.

• Maintaining required information security certifications (e.g., Sec+, CISSP, etc.)
• Experience implementing NISPOM Chapter 8, DAAPM, DoDM 8501.01, JAFAN 6/3, DCID 6/3, ICD 503, DAAPM and/or JSIG IS requirements.

Required Experience:

• Experience with NISPOM, RMF, JSIG, and/or DAAPM certification and accreditation processes.
• Ability to perform technical certifications for systems being presented to the government for authorization.
• Excellent written and verbal communication skills and ability to effectively interface with numerous cognizant security agencies, customers, and senior management.

• Ability to manage multiple projects in a dynamic, demanding environment.

• Knowledge of other security disciplines and how they impact and interact with information system security.
• Active Security+ CE or equivalent DoD Directive 8570 / 8140 Information Assurance Management Level II or III certification.
• Minimum of a valid Secret clearance with in-scope Background Investigation Date

Desired Skills:

• Bachelor's degree in IT/Cyber Security, Computer Science, or related field plus two (2) years of experience in developing and implementing Risk management Framework (RMF) policies and procedures.
• Previous experience working in an SAP / SCI / Collateral environment.

• Prior experience as ISSO, or DoD equivalent at an organization of similar size and complexity.

• Understanding of networking concepts and cybersecurity related tools to include, Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIG) and Security Content Automation Protocol (SCAP), and vulnerability scanners.

EOE/Minorities/Females/Vet/Disabled