SECURITY CLEARANCE REQUIREMENT: TS, WITH SCI ELIGIBILITY
***POSITION REQUIRES US CITIZENSHIP***
Program Description: TS, WITH SCI ELIGIBILITY
The program provides support in the areas of Cybersecurity and Management to improve the Information Assurance (IA) posture of a federal customer. The contract’s support functions are: IA Management, Federal Information Security Management Act (FISMA) coordination and reporting, Risk Management Framework (RMF) application, IA compliance measurements and metrics, Assessment and Authorization (A&A), Vulnerability Management, and Cyber Defense support.
Position Description:
The Information Systems Security Officer (ISSO) provides support to the customer in the area of Cybersecurity. Daily tasks include, but are not limited to:
Participate as the primary security engineering representative for the design, development, implementation, and/or integration of IA architectures, secure networking, systems, computing, enclave environments and components to meet government customer requirements to establish secure baseline-controlled configuration items (CCI)
Provide analytical and technical security recommendations to the customer
Lead the identification of projects’ security requirement
Translate security requirements into specific technical actions for IT staff
Participate in network design reviews and security testing for the customer’s networks
Coordinate with system development teams to ensure network security standards are followed and implemented correctly
Identify additional security requirements, based on RMF or as the result of security issues that put the customer’s systems at risk
Review and analyze new system (hardware and software) and provide recommendations concerning system security
Evaluate proposed security architectures and designs and provide input as to the adequacy of those security designs to meet required security compliance objectives
Develop and maintain processes and procedures to identify, track and mitigate system vulnerabilities
Review Security Requirements Traceability Matrices (SRTMs), System Security Plans (SSPs) and other IA documentation for completeness
Provide Certification & Accreditation and RMF guidance to system owners to ensure accreditation success
Qualifications:
Required:
Current U.S. Government Top Secret clearance with SCI eligibility
Bachelor’s of Science Degree in Science, Technology, Engineering or Mathematics (STEM) or an advanced IA certification
5+ years of experience in security engineering
DoD 8570 Level III certification in IAT or IAM (i.e. CISSP, CASP, CISM, GSLC)
Experience in security systems engineering involving various computer hardware and software operation systems and application solutions in both stand-alone and LAN/WAN configurations
Experience with security features and/or vulnerability of various operating systems as defined by NIST, DISA (STIGs), and USCYBERCOM
Experience with networks and systems security administration, operation systems security configuration and account management best practices
Experience implementing the RMF Process and NIST 800-53 technical controls, as well as developing and maintaining associated certification and accreditation documentation
Desired:
Self-starter requiring limited direction and supervision
Experience briefing senior customer personnel
Ability to organize and prioritize numerous customer requests in a fast-paced, deadline-driven environment
Familiarity with Amazon Web Services (AWS)
Familiarity with Microsoft Azure
Familiarity with federal customer IA processes
Experience with IA vulnerability testing and related network/system test tools (i.e. Retina, HBSS, EVSS, ACAS)