Hiring.Camp

Information Systems Security Officer Mid-Level (ISSO) - (TS required, eligible for SCI)

RedTrace Technologies Inc

·

4 days ago

Location
Winchester, VA
Type
Full-time
Department
Administration
Seniority
Mid
Education
Master
Clearance
Required
Closing date
Today
Source
ApplyToJob

Description

SECURITY CLEARANCE REQUIREMENT: TS, WITH SCI ELIGIBILITY
***POSITION REQUIRES US CITIZENSHIP***
Position Title: Information System Security Officer Mid-Level
Location: Winchester, VA
 
Program Description:
The program provides support in the areas of Cybersecurity and Management to improve the Information Assurance (IA) posture of a federal customer. The contract’s support functions are: IA Management, Federal Information Security Management Act (FISMA) coordination and reporting, Risk Management Framework (RMF) application, IA compliance measurements and metrics, Assessment and Authorization (A&A), Vulnerability Management, and Cyber Defense support.

Position Description:
We are seeking a Junior Level ISSO to carry out the following duties and responsibilities:
  • Services to support IS Security performed by the Information System Security Officer (ISSO) at a minimum, shall consist of to the following activities:
  • Ensure the day-to-day implementation, oversight, continuous monitoring, and maintenance of the security configuration, practices, and procedures for each IS
  • Provide liaison support between the system owner and other IS security personnel
  • Ensure that selected security controls are implemented and operating as intended during all phases of the IS lifecycle
  • Ensure that system security documentation is developed, maintained, reviewed, and updated on a continuous basis
  • Conduct required IS vulnerability scans according to risk assessment parameters.
  • Develop Plan of Action and Milestones (POAMs) in response to reported security vulnerabilities
  • Manage the risks to ISs and other agency assets by coordinating appropriate correction or mitigation actions, and oversee and track the timely completion of (POAMs)
  • Coordinate system owner concurrence for correction or mitigation actions
  • Monitor security controls for agency ISs to maintain security Authorized To Operate (ATO)
  • Upload all security control evidence to the Governance, Risk, and Compliance (GRC) application to support security control implementation during the monitoring phase
  • Ensure that changes to an agency IS, its environment, and/or operational needs that may affect the authorization status are reported to the system owner and IS Security Manager (ISSM)
  • Ensure the removal and retirement of ISs being decommissioned in coordination with the system owner, ISSM, and ISSR
  • Provide baseline security controls to the system owner, contingent upon the IS’s security categorization, type of information processed and entity type
  • Provide a recommendation to the Authorizing Official, in consultation with the system owner, regarding systems’ impact levels and ISs’ authorization boundary
  • Ensure that new entities are created in the GRC application with the security categorization of agency ISs
  • Initiate, coordinate, and recommend to the agency Authorizing Official all Interconnection Security Agreement (ISAs), Memorandum of Understanding (MOUs), and Memorandum of Agreement (MOAs) that permit the interconnection of an agency IS with any non-agency or joint-use IS
  • Perform an independent review of the System Security Plan (SSP) and make approval decisions
  • Request and negotiate the level of testing required for an IS with the Enterprise Information Security Section and the agency Authorizing Official
  • Schedule security control assessments in coordination with the system owner.
  • Coordinate IS security inspections, tests, and reviews with the Security and system owner. Submit the final SAA package to the agency Authorizing Official for a security ATO decision
  • Ensure that the Security ATO Electronic Communication (EC) is serialized into Sentinel under the applicable case file number
  • Advise the agency Authorizing Official of IS vulnerabilities and residual risks.
  • Ensure that all POA&M actions are completed and tested
  • Coordinate initiation of an event-driven reauthorization with the agency Authorizing Official
  • Ensure the removal and retirement of agency ISs being decommissioned, in coordination with the SO, ISSO, and ISSR

Qualifications: 
Required: 
  • Current U.S. Government Top Secret Clearance w/ SCI and a CI-Polygraph eligibility
  • Must be a U.S Citizen
  • 5+ years serving as an Information Systems Security Officer (ISSO) at a cleared facility
  • Minimum of 5 years of work experience in a computer science or Cybersecurity related field
  • Familiarity with the use and operation of security tools including Tenable Nessus and/or Security Center, IBM Guardium, HP Weblnspect, Network Mapper (NMAP), and/or similar applications
  • Hold at least one of the following certifications:
    • Certified Information Systems Security Professional (CISSP)
    • Global Information Security Professional (GISP), or the CompTIA Advanced Security Practitioner (CASP) or other certifications exemplifying skill sets such as those described in DoD Instruction 8570.1 Information Assurance Management (IAM) Level I proficiency
Desired:
  • A bachelor’s and/or advanced degree in computer science, business management, or IT-related discipline

Employee Benefits:
  • Competitive salary for well qualified applicants
  • 401(k) plan
  • Annual performance bonus
  • Certification and advanced degree attainment bonuses
  • Student Loan / Tuition reimbursement
  • Health Care Insurance (medical, dental, vision)
  • Up to four weeks of paid vacation
  • 11 Federal Holidays, and 3 Floating Holidays
  • Team bonding events
RedTrace Technologies is an EOE employer.

Skills

CybersecurityRisk ManagementComplianceCISSPCompTIA

Similar Jobs

30

Information Systems Security Engineer

"G2 Ops, Inc." · Newport, RI · Hybrid

2 days ago

Information Systems Security Officer (ISSO) III

Gdit · USA MA Bedford - Customer Proprietary (MAC017), United States of America +13

3 days ago

Information Systems Security Officer (ISSO) II

Gdit · USA WY Cheyenne - Customer Proprietary (WYC004), United States of America

3 days ago

Information Systems Security Officer (ISSO) II

Gdit · USA OK Oklahoma City - Customer Proprietary (OKC021), United States of America

3 days ago

Information Systems Security Officer (ISSO) III

GDIT · USA MA Bedford - Customer Proprietary (MAC017), United States of America +13

3 days ago

Information Systems Security Officer (ISSO) II

GDIT · USA WY Cheyenne - Customer Proprietary (WYC004), United States of America

3 days ago

Information Systems Security Officer (ISSO) II

GDIT · USA OK Oklahoma City - Customer Proprietary (OKC021), United States of America

3 days ago

Cloud Information Systems Security Engineer (ISSE)

Rapid Cycle Solutions Llc · Chantilly · Onsite

4 days ago

Information Systems Security Manager

Booz Allen Hamilton · Undisclosed Location - USA, VA, Herndon, United States of America

4 days ago

Senior Information Systems Security Officer TS/SCI w/Poly

Pae · US-MD-Annapolis-Junction-4 Nat (MD076), United States of America · Onsite

4 days ago

Information Systems Security Officer - Cloud Security Specialist

Bowhead Uicalaska · Arlington, VA, US

4 days ago

Information Systems Security Officer (ISSO) II

AMERICAN SYSTEMS · Quantico, VA, US

4 days ago

Information Systems Security Officer (ISSO)

Abacus Technology · Hampton, VA, US

4 days ago

Information Systems Security Engineer (ISSE)

"Dobbs Defense Solutions, LLC" · Landover, MD

4 days ago

Information Systems Security Officer (TS/SCI with Poly Required)

GCI · Tysons Corner, VA

5 days ago

Mid-Level Information Systems Security Officer (ISSO) / Control Evaluator

Koniag Government Services · Washington, DC, USA

5 days ago

Senior Information Systems Security Engineer

Parsons Corporation · USA CO Boulder (6304 Spine Road), United States of America · Onsite

5 days ago

Information Systems Security Engineer (ISSE) - TS/SCI with Polygraph

GDIT · USA VA Herndon - Customer Proprietary (VAC032), United States of America · Onsite

5 days ago

Information Systems Security Manager

West 4th Strategy · Hampton, VA

5 days ago

Information Security Systems Engineer

Nvidia · US, VA, Herndon, United States of America

5 days ago

Information Security Systems Engineer

Nvidia · Herndon, VA,US, US

5 days ago

Information Systems Security Engineer (ISSE) - TS/SCI with Polygraph

Gdit · USA VA Herndon - Customer Proprietary (VAC032), United States of America · Onsite

5 days ago

Information Systems Security Office

Cae · Binghamton - Industrial Park - L3, United States of America

5 days ago

Information Systems Security Officer (ISSO2) (Government)

Att · USA:MD:Columbia / Columbia Gateway Dr - Adm:7125 Columbia Gateway Dr, United States of America · Remote

5 days ago

Senior Information Systems Security Engineer (RMF Lead)

Asec Inc · Virginia Beach, VA

6 days ago

Senior Information Systems Security Engineer (ISSE)

Asec Inc · Virginia Beach, VA

6 days ago

Information Systems Security Officer - ISSO

ARA · Raleigh, NC

6 days ago

Information Systems Security Manager

Andurilindustries · Honolulu, Hawaii, United States +1

6 days ago

Information Systems Security Engineer

Leidos · 6986 Andrews Air Force Base MD, United States of America

6 days ago

Information Systems Security Manager (ISSM)

KBR Careers · USA, Washington, 8th & I Streets SE, District of Columbia, United States of America · Onsite

6 days ago