Job Requirements
Fort Meade, MD
Top Secret/SCI Full Scope Polygraph
Senior Level Career (10+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
The Information Systems Security Officer Level 2 supports the security posture, authorization activities, and daily IA operations of assigned systems, enclaves, and programs. This role implements and enforces information systems security policies, performs system security documentation updates, supports RMF (NIST) compliance, and conducts vulnerability assessments, POA&M remediation, and configuration management of security relevant components.
Core Responsibilities
• Support implementation and enforcement of information system security policies and standards
• Assist with developing and maintaining IA documentation to include SSPs, SRTMs, Risk Assessments, and C&A packages
• Evaluate security solutions to ensure compliance with classified processing requirements
• Maintain system security posture and support day to day IA operations
• Provide Configuration Management (CM) for security relevant software, hardware, and firmware
• Manage and track system changes and assess associated security impacts
• Support senior ISSOs and ISSMs in IA posture management for systems and enclaves
• Administer identification and authentication mechanisms for Information Systems
• Perform vulnerability and risk assessments and support remediation efforts
• Support security authorization packages in alignment with NIST RMF
• Maintain records of workstations, servers, routers, switches, firewalls, and other components
• Assist in obtaining and maintaining C&A/ATO status for assigned systems
• Plan, coordinate, and enforce IT security programs and policies
• Serve as approval authority for systems under assigned purview (as designated)
Technical Requirements
• Experience with security tools, hardware/software security implementation, encryption methods, and communication protocols
• Experience performing:
– Hardware & software inventory updates and change log maintenance
– STE/STN security processes
– LatteArt and Gatekeeper workflows
– Reviewing XACTA notices
– Completing SEAR audit log records
– Reviewing and addressing POA&Ms for IAVA vulnerabilities
– Reviewing scans and coordinating remediation with system owners/admins
– Security incident response reporting
– Authorization activities for new and legacy systems
Qualifications
• Top Secret/SCI with Full Scope Polygraph — No Exceptions
• 10 years of ISSO experience with similar scope and complexity
• Bachelor’s degree in Computer Science or related discipline
• Four (4) additional years of ISSO experience may substitute for a degree
• Must have one IAM Level I certification (CAP, CND, Cloud+, GSLC, Security+ CE, HCISPP)
Core Responsibilities
• Support implementation and enforcement of information system security policies and standards
• Assist with developing and maintaining IA documentation to include SSPs, SRTMs, Risk Assessments, and C&A packages
• Evaluate security solutions to ensure compliance with classified processing requirements
• Maintain system security posture and support day to day IA operations
• Provide Configuration Management (CM) for security relevant software, hardware, and firmware
• Manage and track system changes and assess associated security impacts
• Support senior ISSOs and ISSMs in IA posture management for systems and enclaves
• Administer identification and authentication mechanisms for Information Systems
• Perform vulnerability and risk assessments and support remediation efforts
• Support security authorization packages in alignment with NIST RMF
• Maintain records of workstations, servers, routers, switches, firewalls, and other components
• Assist in obtaining and maintaining C&A/ATO status for assigned systems
• Plan, coordinate, and enforce IT security programs and policies
• Serve as approval authority for systems under assigned purview (as designated)
Technical Requirements
• Experience with security tools, hardware/software security implementation, encryption methods, and communication protocols
• Experience performing:
– Hardware & software inventory updates and change log maintenance
– STE/STN security processes
– LatteArt and Gatekeeper workflows
– Reviewing XACTA notices
– Completing SEAR audit log records
– Reviewing and addressing POA&Ms for IAVA vulnerabilities
– Reviewing scans and coordinating remediation with system owners/admins
– Security incident response reporting
– Authorization activities for new and legacy systems
Qualifications
• Top Secret/SCI with Full Scope Polygraph — No Exceptions
• 10 years of ISSO experience with similar scope and complexity
• Bachelor’s degree in Computer Science or related discipline
• Four (4) additional years of ISSO experience may substitute for a degree
• Must have one IAM Level I certification (CAP, CND, Cloud+, GSLC, Security+ CE, HCISPP)
group id: 91093879