Information System Security Officer (ISSO) (TS/SCI-POLY Required

Description

CLEARANCE REQUIREMENT

• Must possess an active TS/SCI clearance with an active Polygraph. Both the clearance and polygraph need to be fully adjudicated. Interim clearances will not be accepted.
• U.S. citizenship is required to comply with the government contract.

Best Value Technology, Inc. (BVTI), a service-disabled veteran-owned small business (SDVOSB), is looking for an experienced Information System Security Officer (ISSO) to support our federal clients within the Intelligence Community on long-term, high-profile contracts. The ISSO will be responsible for interpreting and implementing all necessary procedures and policies to safeguard classified and sensitive information across designated networks, acting as the primary point of contact for computer security-related matters. In this role, the ISSO will provide comprehensive information system security support for the Directorate of Acquisition Management, which includes overseeing SSP processes, facilitating training and awareness initiatives, supporting physical security, conducting audits and continuous monitoring, managing incident and violation reporting and response, assessing risk, and supporting accreditation efforts.

Position Requirements

DUTIES AND RESPONSIBILITIES

• Work alongside systems administrators to ensure that all information systems are operated, maintained, and disposed of in accordance with established security policies and practices.
• Coordinate with physical security personnel to ensure the physical protection of information security assets.
• Perform continuous monitoring of systems to ensure the systems stay accredited by performing software patching and updates.
• Conduct security audits of systems and initiate corrective actions if a security problem is discovered.
• Inform and coordinate with IT professionals when protective or corrective measures are needed to resolve security issues or meet security standards.
• Conduct risk assessments, actively document security problems, and provide strategic mitigation strategies.
• Evaluate proposed changes or additions to the information systems and advise the team of security relevance.
• Maintain documentation of the system administrators' PKI and PRIVAC status.
• Ensure the information systems remain in compliance with vulnerabilities and any other security-related notices.
• Review security engineering design and seek approval, support implementation, and testing for all aspects of IA and IS (InfoSec) engineering at all stages of the Systems Development Life Cycle (SDLC) process.
• Assess systems security threats/risks throughout the program life cycle and work with IT professionals to implement corrective action.
• Review and monitor security designs in hardware, software, data, and procedures.
• Performs systems certification and accreditation planning and testing, and liaison activities.
• Prepare and maintain C&A documentation such as SSP, Security CONOPS, ST&E reports, etc.
• Review various documents and files for transfer across systems or before release.
• Communicate with customers' security authorities to ensure compliance and negotiate proposed system or policy changes.
• Report the security status of information security to customers' ISSM.
• Ensure users and systems support personnel have the required security clearance and need-to-know to utilize the system.
• Conduct user training and awareness activities.

REQUIRED EDUCATION, KNOWLEDGE, AND SKILLS

• Bachelor's Degree in a STEM field or an advanced degree in Cybersecurity.
• Minimum of five (5) years of experience in information security or risk management.
• Automated Information System (AIS) security experience with multiple IC SCI Control Systems, DoD Special Access Program (SAP)/Special Access Required (SAR) activities, and SCI Special Handling.
• An active technical certification compliant with DoD 8140.
  • The following certifications are preferred:
    • Certified Information Systems Security Professional (CISSP) Certification
    • Certified Information Systems Auditor (CISA) Certification
    • Certified Information Systems Manager (CISM) Certification

EOE Statement

Best Value Technology, Inc. (BVTI) is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment on any legally protected basis.

About the Organization

Talented people who make excellence their highest priority are BVTI's backbone. If your passion is to excel at adding value to your clients, then please send us your resume concerning one of our open opportunities.