PKI Information Systems Security Support

Key Role:

Engage as an Information Systems Security Officer (ISSO) to support Department of Defense  (DoD) clients within the Pentagon. Work in close coordination with the ISSM, monitoring systems and environments of operation. Work with system owners to maintain Risk Management Frame Work (RMF) artifacts, managing the system change management process, and assessing the security impact of proposed changes. Coordinate with system owners to ensure compliance with the DoD RMF security control guidelines.

Basic Qualifications:

  • 5 years of experience providing security guidance and IS validation utilizing the National Institute of Standards and Technology (NIST) RMF, DoD, and local security policies

  • Experience providing configuration management (CM) for information system security software, hardware, and firmware,  coordinating changes and modifications the ISSM, Security Control Assessor (SCA) , and Authorizing Official  (AO)

  • Experience reviewing system security audit logs, and utilizing network scanning software to perform vulnerability/risk assessment analysis in support of RME. Maintain vulnerability scanning tool compliance (HBSS / ACAS) and patch management (IAVM) to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives. Manage changes to system and assess the security impact of those changes

  • Experience Interface with information assurance managers preparing and reviewing documentation to include Systems Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and Plan of Actions and Milestones (POA&M)

  • Ability to manage cybersecurity activities that need to be performed by system owners (e.g., annual refresher CS training, awareness briefings) or require a personal interface (e.g., incident response, data transfers).

  • Secret clearance

  • Bachelor's degree

  • DoD 8570-compliant certification

Additional Qualifications:

  • Experience using the NIST Security Content Automation Protocol (SCAP) tool, or Depart of Defense STIG Viewer application

  • Knowledge and Experience with Enterprise Mission Assurance Security Solution (EMASS).

  • Knowledge of Information Systems security gained from higher education, trade certifications (MS or CISCO certifications), or a combination of the previous and direct job experience in the information technology / information security field.

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required.

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

Not ready to apply? Join our talent community and sign up for job alerts.