Senior Information Systems Security Officer (ISSO)

Overview

VTG is seeking a Senior Information Systems Security Officer (ISSO) in Chantilly, VA.

What will you do?

The Senior Information Systems Security Officer (ISSO) serves as the Information Systems Security Officer (ISSO) providing system security support for ongoing and future system development within the Customer organization

Our unique team of technical and business disciplines provide operational support for Systems Engineering/Integration, Mission Planning, and Business Operations to multiple functional mission areas. The team is responsible for technical design, operations, and mission planning and business operations for the full life cycle of customer specific operations (from concept through development and installation/O&M).

The Senior Information Systems Security Officer (ISSO) will be responsible for the following but not limited to:

• Support organization-wide activities to maintain A&A compliance of all systems and full-lifecycle.
• Closely collaborate with the ISSM staff to manage ongoing issues and accreditations.
• Serve as the focal POC between the project teams and the accreditation office.
• Review/assess network diagrams and schematics.
• Review and interpret system vulnerability scans and work with project teams to resolve security issues.
• Resolve inconsistencies and irregularities in the submission of A&A documentation.
• Required to put together assessment reports to provide organizational risk, ad hoc customer responses mostly dealing with analysis and policy interpretation.
• Will handle software management, laptop compliance, certification and accreditation of systems, patch management, continuous monitoring/scanning.
• Develop and maintain SSPs.
• Maintaining systems as well as working with SETA and development contractors to prepare SSPs and work through the A&A processes.
• Generate and review the Body of Evidence (BOE) and artifacts.

**This role requires the candidate to perform duties on-site Mon-Fri.**

Do you have what it takes?

Required Qualifications:

• Active/current TS/SCI w/ a valid Polygraph is required.
• Bachelor's degree in engineering, science, or other related technical discipline and 12 years relevant experience; or a Master's degree and 10 years of relevant experience; or a PhD and seven (7) years of relevant experience.
• Risk Management and the Certification and Accreditation processes and related policies.
• System Administrator Security Course.
• Proven experience in Information Systems Security to include:
• Direct project management experience with patch management, continuous monitoring, and vulnerability scanning/remediation activities - this includes devising or implementing a continuous monitoring plan across multiple security domains and familiarity with tools used in compliance and vulnerability assessments.
• Familiarity with cloud computing and related security concepts, as well as, cross-domain solutions.
• Working knowledge of digital communications and related IT communications technologies.
• Good time management skills.
• Ability to support multiple projects.
• Ability to multitask and manage.