Information System Security Officer

Key Role:

Work directly with the government client supporting daily activities while managing changes to the system and assessing the security impact of those changes. Provide information assurance support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies. Maintain operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed. Assist with the management of security aspects of the information system and perform day-to-day security operations of the system and evaluate security solutions to ensure they meet security requirements for processing classified information. Perform vulnerability and risk assessment analysis to support certification and accreditation and configuration management for information system security software, hardware, and firmware. Prepare and review documentation, including System Security Plans (SSPs), Risk Assessment Reports, Assessment and Authorization (A&A) packages, and support security authorization activities in compliance with DoD Risk Management Framework (RMF). Work with engineering teams during system design and build processes to ensure designs are adhering to security best practices including Media Destruction/Sanitization of Equipment, User Account actions, Software Accountability, and tracking.

Basic Qualifications:

  • 3+ years of experience with cyber security/information systems security

  • 3+ years of experience in guiding an information system through the seven-step Risk Management Framework (RMF) process

  • Experience reviewing security requirements using the RMF management tools Enterprise Mission Assurance Support Service (eMASS) or Xacta

  • Experience with the National Institute of Standards National Institute of Standards and Technology (NIST) and Federal Information Security Management Act (FISMA) requirements and reporting

  • Experience with vulnerability/compliance assessment tools, including ACAS

  • DoD 8570 compliance –IAM Category, Level I/II Certification

  • Secret clearance

  • HS Diploma or GED

  • Ability to obtain DoD 8570 compliance –IAM Category, Level I/II Certification within 6 months of hire

Nice to Have:

  • Experience hardening Windows, Linux, and Virtual infrastructure using DoD Security Technical Implementation Guides

  • Experience working directly with customers to provide operational support

  • Experience with developing, analyzing, or executing technical documentation such as test plans and procedures

  • Knowledge of DevSecOps, Zero Trust Architecture, and enterprise level storage and database solutions

  • Knowledge of SDLC processes

  • Knowledge of VMware solutions

  • TS/SCI clearance

  • Bachelor's degree

  • DoD 8570 compliance –IAM Category, Level III Certification

Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

Not ready to apply? Join our talent community and sign up for job alerts.