Information Systems Security Officer in McLean, VA at Booz Allen Hamilton Inc.

Date Posted: 9/21/2018

Job Snapshot

Job Description

Job Number: R0036776

Information Systems Security Officer

Key Role:

Serve as the Information Systems Security Officer (ISSO) for multiple programs. Interact with internal and external customers or client security officials to perform security duties, address routine information security matters with employees regarding issues, including report preparation, system security access briefings, and other duties as a member of a team reporting to the ISSM. Perform Assessment and Authorization (A&A) processes under the risk management framework (RMF) and respond to questions from users concerning secure operation of the information system and the execution of procedures as defined by the client. Lead the execution of system assessment testing using test scripts and other tools to identify potential security weaknesses and then recommend improvements to amend vulnerabilities, implement changes, and confirm information systems compliance with client security requirements. Support privileged users and lead the execution of mandatory system audits, continuous monitoring (ConMon) assessments, virus scanning of software, and the application of configuration management procedures. Ensure timely and effective management of incident response needs, ensure auditing requirements are completed for media control, virus scanning, and hardware and software control, and ensure the application of secure configuration settings for system or network appliance operating systems as defined by the client. Coordinate with firm client facing staff and security leadership to ensure Cybersecurity support strategy enables the execution of program management defined business objectives, lead mandatory Cybersecurity self-assessments, and serve as a primary client point of contact for client sponsored audits of authorized systems.

Basic Qualifications:

-2+ years of experience as an ISSO or with supporting classified contractor or government authorized classified systems

-Experience with data-write and cross-domain data transfer processes

-Knowledge of NIST SP 800-37 and NIST SP 800-53

-Knowledge of NISPOM Chapter 8, ICD 503 Risk Management Framework, or other government Cybersecurity policy and implementation guidance, including assessment and authorization (A&A) processes applied to secure or maintain client authorization of classified contractor systems

-Ability to work effectively in teams

-TS/SCI clearance with a polygraph

-BA or BS degree

Additional Qualifications:

-Experience with serving as a Windows server, UNIX or Linux server, or system administrator preferred

-Possession of excellent oral and written communication skills

-BA or BS degree in CS, Information Systems Management, Cybersecurity, or Information Assurance

-Active Level II-III IAM Information Technology Certification as defined in DoD 8570, DoD 8140, or other client defined requirements

Applicants selected will be subject to a security investigation and will need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.


Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.