Information System Security Officer (ISSO)

Description

Clearance Requirement

• Must possess an active Top Secret/SCI clearance with an active polygraph. Both the clearance and polygraph need to be fully adjudicated. Interim clearances will not be accepted.
• U.S. citizenship required to comply with the government contract.

Best Value Technology, Inc. (BVTI), a service-disabled veteran-owned small business (SDVOSB), is looking for an Information System Security Officer (ISSO) to join our team supporting federal clients in the Intelligence Community on long-term, high-profile contracts. The ISSO will interpret and implement all procedures and policies needed to protect classified and sensitive information within the assigned networks and will serve as the main contact for all computer security-related issues. The ISSO will provide information system security support for the Directorate of Acquisition Management, covering SSP processes, training and awareness for customers, physical security, auditing and continuous monitoring, incident and violation reporting and response, risk management, and accreditation.

Duties and Responsibilities

• Work alongside systems administrators to ensure that all information systems are operated, maintained, and disposed of in accordance with established security policies and practices.
• Coordinate with physical security personnel to ensure the physical protection of information security assets.
• Perform continuous monitoring of systems to ensure the systems stay accredited by performing software patching and updates.
• Conduct security audits of systems and initiate corrective actions if a security problem is discovered.
• Inform and coordinate with IT professionals when protective or corrective measures are needed to resolve security issues or meet security standards.
• Conduct risk assessments and provide recommendations to ensure and maintain compliance and accreditation.
• Evaluate proposed changes or additions to the information systems and advise the team of the security relevance.
• Maintain documentation of the system administrators' PKI and PRIVAC status.
• Ensure the information systems remain in compliance with vulnerabilities and any other security-related notices.
• Review security engineering design and seek approval, support implementation, and testing for all aspects of IA and IS engineering at all stages of the systems.
• Development Life Cycle (SDLC) process.
• Assess systems security threats/risks throughout the program life cycle and work with IT professionals to implement corrective action.
• Review and monitor security designs in hardware, software, data, and procedures.
• Performs system certification and accreditation planning and testing, and liaison activities.
• Prepare and maintain C&A documentation such as SSP, Security CONOPS, ST&E reports, etc.
• Review various documents and files for transfer across systems or before release.
• Communicate with customers' security authorities to ensure compliance and negotiate proposed system or policy changes.
• Report the security status of information security to customers' ISSM.
• Ensure users and systems support personnel have the required security clearance and need-to-know to utilize the system.
• Conduct user training and awareness activities.

Position Requirements

Required Education, Knowledge, and Skills

• Bachelor's Degree in a related field.
• Minimum of seven (7) years of experience in information security or risk management.
• Automated Information System (AIS) security experience with multiple IC SCI Control Systems, DoD Special Access Program (SAP)/Special Access Required (SAR) activities, and SCI Special Handling.
• An active technical certification compliant with DoD 8140.
• Current CompTIA Security+ certification.

Preferred Education and Experience

• The following certifications are preferred:
  • Certified Information Systems Security Professional (CISSP) Certification
  • Certified Information Systems Auditor (CISA) Certification
  • Certified Information Systems Manager (CISM) Certification

EOE Statement

Equal Employment Opportunity Employer

BVTI provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

About the Organization

Talented people who make excellence their highest priority are BVTI's backbone. If your passion is to excel at adding value to your clients, then please send us your resume concerning one of our open opportunities.