Position Summary

The client is looking for an Information Systems Security Officer (ISSO) to provide support for a program, organization, system, or enclave's information assurance program.  Provides support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies.

Essential Job Functions

• Provides support for a program, organization, system, or enclave’s information assurance program.
• Provides support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies.
• Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed.
• Assists with the management of security aspects of the information system and performs day-to-day security operations of the system.
• Evaluate security solutions to ensure they meet security requirements for processing classified information.
• Performs vulnerability/risk assessment analysis to support certification and accreditation.
• Provides configuration management (CM) for information system security software, hardware, and firmware.
• Manages changes to system and assesses the security impact of those changes.
• Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
• Supports security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF).

Minimum Required Qualifications

• Due to the nature of this position and the information that employees will be required to access, U.S. Citizenship is required.
• Ten (10) years experience as an ISSO on programs and contracts of similar scope, type, and complexity and a Bachelor’s degree in Computer Science or related discipline from an accredited college or university is required, OR
• Fourteen (14) years experience as an ISSO on programs and contracts of similar scope, type, and complexity and a High School diploma.
• Note: Experience is to include at least two (2) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools.