Key Role:

Leverage expertise in administering US government security policies and procedures to support the Information Systems Security Manager (ISSM) as an Information Systems Security Officer (ISSO). Provide support for the assessment and authorization of Risk Management Framework (RMF) packages for computer networks using government standards, including ensuring systems are operated, maintained, and disposed of in accordance with security policies and procedures, as outlined in the security authorization package. Maintain responsibility for hardware and software control, computer security briefings, educating users within the security program, and ensuring business needs are met. Work with systems administrators to ensure all systems security procedures are being followed in accordance with the applicable System Security Plan (SSP) and Security Control Traceability Matrix (SCTM), ensure audit files are maintained and reviewed in accordance with client requirements, offer sound decisions, take independent action, analyze problems, and provide focused solutions. Support system administrators as needed for software patch installation, antivirus updates, and conducting security self-reviews as needed and coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM to ensure compliance with configuration management policy.

Basic Qualifications:

• 3+ years of experience as an ISSO or ISSM
• Experience with Windows 10, Server 2016, the SCAP tool, and audit reduction tools and applications
• Experience with eMASS
• Knowledge of virtual environments and hypervisors
• Knowledge of the assessment and authorization process for DoD computers
• Knowledge of National Industrial Security Program Operating Manual (NISPOM), Joint Special Access Program Implementation Guide (JSIG), Intelligence Community Directive (ICD) 703, Security Technical Implementation Guides (STIGs), the Risk Management Framework (RMF) process, and associated National Institute of Standards and Technology (NIST) publications
• Knowledge of incident handling, including data spills for unclassified and classified systems
• TS/SCI clearance
• BA or BS degree
• Security+ CE or IAM Level I certification within DoD 8570 requirements

Additional Qualifications:

• Experience with VM environments
• BA or BS degree in Cybersecurity, CS, or Information Assurance
• CISSP Certification

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.