JOB SUMMARY:
The Information Systems Security Officer (ISSO) provides direct support to the assigned client's classified program requirements and controlled unclassified information (CUI) program to include establishing and administering the client's classified accredited automated information systems and the unclassified facility network.
The ISSO will serve as the point of contact for all client technical and Information Assurance (IA) matters for assigned systems / areas and will provide subject matter expertise to client personnel and affiliates. Additionally, this position ensures client adherence to the guidance and requirements of the NISPOM (including Chapter 8), the DAAPM, DCID 6/3, ICD 503 and associated NIST publications, as well as customer / contract imposed specific IA directives
The ISSO must demonstrate a high level of skill working with network equipment and mixed network environments / configuration, maintain close partnership with, and support of, the client's Program Management Office for DoD contracts and work closely with the client's Information Technology Systems Office and Compliance Office
ESSENTIAL FUNCTIONS:
* The functions listed describe the business purpose of this job. Specific duties or tasks may vary and be documented separately. The employee might not be required to perform all functions listed. Additional duties may be assigned, and functions may be modified according to business necessity.
* All assigned duties or tasks are deemed to be part of the essential functions unless such duties or tasks are unrelated to the functions listed, in which case they are deemed to be other (non-essential) functions.
* Employees are held accountable for successful job performance. Job performance standards may be documented separately and may include functions, objectives, duties, or tasks not specifically listed herein.
* In performing functions, duties, or tasks, employees are required to know and follow safe work practices and to be aware of company policies and procedures related to job safety, including safety rules and regulations. Employees are required to notify superiors upon becoming aware of unsafe working conditions.
* All functions, duties, or tasks are to be carried out in an honest, ethical, and professional manner and are to be performed in conformance with applicable company policies and procedures. In the event of uncertainty or lack of knowledge of company policies and procedures, employees are required to request clarification or explanations from superiors or authorized company representatives.
Systems Management
1. Responsible for all aspects of Client Systems Management as designated to include the following: Automated Information System (AIS) configuration / hardening.
2. Will implement operating system and applications programs updates, Self-inspections of Information System (IS) assets, Audit trail reviews, Anti-virus updates and System backups
3. Writing system security plans (SSPs) for classified AISs with all required supporting documentation
4. Responsible for Configuration management changes and IS security education and awareness training
5. Respond to network incidents pursuant to the Incident Response Plan
6. Maintain hardware and software baselines for the unclassified network
Network Administration
7. Maintain and audit the client's unclassified facility network in conformance with the published Electronic Communications Plan (ECP)
8. Cybersecurity Maturity Model Certification (CMMC) policy documents
9. Individual accredited classified government computer systems
10. Information assurance (IA) program, including Risk Management Framework (RMF)
11. Document preparation, Configuration management and Certification testing and submission eMASS
12. Performs additional functions, duties and specific tasks of a similar nature and scope (to include those of the proposal writer) as necessary in order to achieve assigned business objectives.
MINIMUM QUALIFICATIONS AT ENTRY
Additional qualifications may be specified and receive preference depending upon the nature of the position
Basic Qualifications
* Must be a citizen of the United States
* Ability to acquire and maintain the required level of Department of Defense (DoD) Top Security Clearance. Must have a minimum of an active Interim Secret granted.
* Ability to acquire and maintain any other specific special clearances/access requirements.
* At least 18 years of age
Education/Experience
* A Bachelor's degree is required in a computer science or equivalent
* 4 - 6 years of experience in a related field.
* Experience working with and supporting SIPRNet and JWIC
* DoD 8570.1M certified consistent with IAT Level III requirements. Experience with CCRI preparation
* Preferred qualifications include: Familiarity with service desk applications and / or incident management environments, Audio Visual skills and Experience with DAAPM and the NIST Risk Management Framework (RMF)
Background Prerequisites
Must undergo and meet company standards for background and reference checks, controlled substance testing, and behavioral selection survey, in addition to any mandatory licensing requirements
Competencies (as demonstrated through experience, training, and/or testing)
* Working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
* Knowledge and experience with various operating systems, to include Windows Server, Windows 7 Professional/Enterprise, Linux and Unix.
* Experience with auditing and certifying compliance of various systems (Windows, Linux, network devices and peripherals).
* Required experience hardening automated information systems to meet DoD requirements for Windows and Linux systems.
* Experience with the preparation of RMF documents and procedures
* Experience with development and delivery of IA-related briefings and training material.
* Experience with compliance and vulnerability scanning tools (Nessus, SCAP, ACAS, SCC).
* Experience with conducting all aspects of a self-inspection
* Experience writing System Security Plans (SSPs) and supporting documents for submission in eMASS
* Understanding of NIST 800-171
* Understanding of CMMC requirements
* Experience monitoring various SIEMs
* Ability to translate operational requirements into technical requirements and architectures needed to meet program objectives
* Ability to convey complex technical concepts in easily understandable business terms
* Ability to work both independently and as part of a cohesive, cross-functional team
* Strong ability to communicate effectively in English, both verbally and in writing.
* Strong planning, organization and time management skills.
* Ability to carry out multiple assignments / projects concurrently.
* Ability and willingness to adapt quickly to shifting deadlines and priorities;
* Strong sense of urgency and accountability
* Ability to consistently apply good judgment in problem solving and decision making.
* Ability to interact effectively at all levels and across diverse cultures.
* Ability to maintain professional composure when dealing with unusual circumstances.
* Ability to adapt to changes in the external environment and organization.
WORKING CONDITIONS (Physical/Mental Demands)
With or without reasonable accommodation, requires the physical and mental capacity to perform effectively all essential functions. In addition to other demands, the demands of the job include:
* Maintaining composure in dealing with authorities, executives, clients, staff and the public, occasionally under conditions of urgency and in pressure situations.
* Must undergo and meet company standards for background and reference checks, controlled substance testing, and behavioral selection survey.
* Handling and being exposed to sensitive and confidential information.
* Required ability to handle multiple tasks concurrently.
* Regular talking and hearing.
* Close vision, distance vision, and ability to adjust focus.
* Frequent local and regional/national travel to client sites for presentations, meetings, and visits.
* Frequent lifting and/or moving of presentation materials up to 20 pounds.
EOE/M/F/Vet/Disabilities
Please apply using Chrome, Safari, or Firefox.