WashingtonRecruiter Since 2001
the smart solution for Washington DC jobs

Information Systems Security Officer - (ISSO)

Company: Zermount, Inc.
Location: Washington
Posted on: April 10, 2021

Job Description:

The Information Systems Security Officer (ISSO) will provide Security Assessment and Authorization (SA&A) support to the client and their IT systems within the client's inventory. These systems are a combination of General Support Systems, Major Applications, Minor Applications and Subsystem at various impact levels. The ISSO will be responsible for developing and providing risk and vulnerability assessments, Security Control Assessments (SCA), SA&A documentations and various reports, based on NIST guidelines and client's policies, procedures and request.

Essential Functions

  • Developing a detailed project schedule, including SA&A/SCA task and milestones, task dependencies, and personnel resources.
  • Conduct SA&A activities sand tasks and obtain Authorization to Operate (ATO) in line with NIST and client guidance and directives.
  • Determining the baseline IT Security requirements for IT Systems, identifying system boundaries, determining information categories, assisting with FIPS-199.
  • Ensure that IT Systems are operated, used, maintained, and disposed of in accordance with internal security policies and practices.
  • Enforce security policies and safeguards on all personnel having access to the IT System for which the ISSO has responsibility.
  • Ensure users and system support personnel have the required authorization and need-to-know; have been indoctrinated; and are familiar with internal security practices before access to the IT System.
  • Review and generate SA&A and system documentation as needed.
  • Selecting baseline controls for the IT System using RSA Archer and tailor security controls as appropriate.
  • Implement security controls based on IT System FIPS categorization.
  • Documenting security control implementation in the system's Security Plan using the Library's Information Assurance (IA) tool (RSA Archer).
  • Conduct SCA for IT systems, when required.
  • Document system's risk assessment per client directives and requirements.
  • Develop and document all required artifacts for the SA&A package.
  • Conduct Contingency Plan Test (CPT) for systems.
  • Review and monitoring system security and audit logs.
  • Develop and maintain Plan of Actions and Milestones (POA&Ms) for IT systems.
  • Update SA&A documentation and artifacts on a regular basis (e.g. annually, after approved change).

    Qualifications

    Required Skill and Experience:
    • A minimum of five (5) years of demonstrated experience in the Information Security (Cybersecurity or Information Assurance) field.
    • Demonstrates a proficiency with developing, maintaining and managing SA&A packages.
    • Experience with developing and managing POA&M's.
    • Displays technical experience with conducting research and providing review recommendations on software and technologies for vulnerabilities.
    • Technical experience with reviewing vulnerability scans and providing mitigation techniques.
    • Possess expertise in conducting SCA's.
    • Experienced writing security related policies and procedures
    • Possess experience conducting CPT's.
    • Experience with conducting audit log reviews.
    • Experience with NIST Special Publications and guidance.
    • Strong problem solving and analysis skills, self-motivated, and able to work and communicate in a team environment.
    • Excellent communication (written and verbal) skills
      Education:
      • Bachelor's degree or higher in computer science, Information Technology, Information Security, or similar fields.
        Certifications:
        • A minimum of at least one (1) certification must be active relating to information security such as:
          • Certified Information Systems Security Professional (CISSP);
          • GIAC security certification (e.g. GCIH, GWAPT, GPEN, GSLC, etc.)
          • CompTIA Security +
          • CEH
            Clearance:
            • Minimum of an Active Secret Clearance (Top Secret preferred)
              Work Location and Core Hours:
              • Washington DC - 7:00 am - 5:00 pm
                Powered by JazzHR

                isr9Z4veRS

Keywords: Zermount, Inc., Washington DC , Information Systems Security Officer - (ISSO), IT / Software / Systems , Washington, DC

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Other IT / Software / Systems Jobs


Systems Administrator
Description: By providing the information below and checking the boxes referenced, you acknowledge and consent to SAIC's Privacy Policy to include access and use of your information for the purposes of sharing your (more...)
Company: Saic
Location: Chantilly
Posted on: 04/14/2021

Software Test Engineer - Remote
Description: Company Overview br br Harbor Compliance is a fast-growing technology company that is reinventing how nonprofits and businesses manage critical areas of compliance. An Inc. 5000 and Deloitte Technology (more...)
Company: Harbor Compliance
Location: Lancaster
Posted on: 04/14/2021

Java Developer - Entry Level
Description: At Revature, we hire emerging technology talent to innovate the future of tomorrow. In the next 4 weeks, we will hire over 300 new Entry Level Java Developers.--One day someone is going to ask you where (more...)
Company: Revature
Location: Bowie
Posted on: 04/14/2021


Northrop Grumman (DoD SkillBridge) - Windows Systems Administrator
Description: As one of the largest global security companies in the world, Northrop Grumman is proud to help our nation's military personnel make the transition to civilian careers. Approximately 1/4th of Northrop (more...)
Company: Northrop Grumman
Location: Sterling
Posted on: 04/14/2021

Software Quality Assurance Tester
Description: By providing the information below and checking the boxes referenced, you acknowledge and consent to SAIC's Privacy Policy to include access and use of your information for the purposes of sharing your (more...)
Company: Saic
Location: Chantilly
Posted on: 04/14/2021

Software Developer ARCHIBUS Integrator
Description: By providing the information below and checking the boxes referenced, you acknowledge and consent to SAIC's Privacy Policy to include access and use of your information for the purposes of sharing your (more...)
Company: Saic
Location: Chantilly
Posted on: 04/14/2021

Plsql Developer (PL/SQL Developer) - Contract to Hire - ETL experience must
Description: Title: PL/SQL DeveloperDuration: Contract to HireLocations: Remote br DESCRIPTION: br MUST HAVE: ul li Certifications: Oracle PL/SQL Developer Certified li ETL Experience
Company: Mastech Digital
Location: Chantilly
Posted on: 04/14/2021

Principal Web Software Developer
Description: Category: Information TechnologyLocation: Chantilly, VirginiaUS Citizenship Required for this Position: YesClearance Type: PolygraphTelecommute: No -Teleworking not available for this positionShift: 1st (more...)
Company: Northrop Grumman
Location: Chantilly
Posted on: 04/14/2021

Sr. Principal Windows Systems Administrator
Description: Support our entire enterprise and build the networks, staff the teams, and develop the processes that will keep us defining what's possible. We have opportunities across our enterprise with 90,000 team (more...)
Company: Northrop Grumman
Location: Catonsville
Posted on: 04/14/2021

Director of Information Technology
Description: The Denzel Group is sourcing for an IT Director, Security to join a growing organization in Lancaster county. You will be responsible establishing the strategy
Company: The Denzel Group
Location: Lancaster
Posted on: 04/14/2021

Log In or Create An Account