INFORMATION SYSTEMS SECURITY OFFICER (ISSO)

LOCATION:Hybrid; Dayton, OH

ELIGIBILITY: US Citizen

CLEARANCE:Successful Background Check Required. Ability to obtain Secret Clearance.

POSITION: Security Engineer-III

DESCRIPTION:

The ideal Information Systems Security Officer (ISSO) candidate is a dynamic, highly motivated and well-organized Senior Security Engineer with experience administering security policies and procedures on secure information systems.

RESPONSIBILITIES:

The ISSO requires flexibility, independent judgment and discretion in order to handle the identification, analysis and resolution of security-related matters. Candidate will perform system or network designs that encompass multiple enclaves, to include those with differing data protection/ classification requirements. The candidate should understand distributed architectures and cloud-based systems and their cybersecurity implications. Candidate will use vulnerability management systems, automated security scanning tools, and system accreditation record systems.

Candidate must be able to grasp new concepts, facilitate information exchanges for data gathering, and collaborate with diverse audiences. Must follow established processes where applicable and establish and execute defensible processes where none are prescribed.

Candidate will provide security planning, assessment, risk analysis, and risk management support. Will also recommend system-level solutions to resolve security requirements and guide the development team in meeting the security posture requirements. Will also support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures. Must apply existing knowledge of IA policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments.

Functional Responsibilities include:

• Assist with the overall Security Program.
• Manage and maintain secure servers and workstations.
• Administer Windows operating systems/servers.
• Identify, recommend and implement updates and improvements to information systems.
• Perform information systems self-inspections.
• Prepare for and support inspections by customer base.
• Maintain, update and administer Information System Training.
• Developing and managing of STIGs, CONOPS, POAMs to maintain approved information systems.
• Update and maintain Plan of Action & Milestones (POAMs) as needed.
• Continuous monitoring, testing and validation of system controls.
• Identify information system vulnerabilities and implement corrective actions.
• Install and maintain operating system and software packages as well as required updates and patch management.
• Install and maintain system hardware.
• Administer backups, audits, virus scanning to information systems.
• Maintain accountability of media and control logs.
• Manage weekly audits and maintenance.
• Generate and update information systems authorization packages as required.
• Log reports of media, changes to system, or other required logs.
• Implement and update security settings per STIG requirements.
• Validate security configurations with SCC and STIG Viewer.
• Creates and maintains RMF documentation.
• Provide COMSEC support.
• Research, document, and make recommendations to update and streamline security policies, processes, procedures and inspections.
• Assist Facility Security Officer as needed.
• Assist with preparing for and participating in DCSA and other customer security reviews.
• Provide insight to support Cybersecurity Maturity Model Certification (CMMC).
• Perform other related duties as assigned.

REQUIREMENTS:

• Security Clearance: A current Secret level government clearance is required, and therefore all candidates must be a U.S. citizen.

Required Skills:

• Bachelor’s Degree in a technical discipline (i.e. Computer Science, Information Systems, Computer Engineering, etc.) or needs a total of 10 years of experience in lieu of degree.
• 6 years of experience as an ISSE with large multi-tiered programs.
• Minimum 2-year ISSO experience is required.
• DoD 8570 compliance with IAT Level II (e.g. SSCP, Security , CCNA-Security, or GSEC certification)
• DoD 8570 compliance with IASAE Level II (e.g. CSSLP, CISSP, or CASP certification)
• Experience implementing DoD system accreditation processes (e.g. NIST-RMF, FedRAMP).
• Working knowledge of NIST/CMMC policies is required.
• Experience with DISA STIGs and SRGs, vulnerability management systems, mitigation and compliance processes, and reviewing results from automated security scanning tools.
• Experience with NISPOM requirements.
• A working knowledge of TCP/IP suite of protocols and services, computer architectures, and network topologies, distributed architectures and cloud-based systems for big data applications is required.
• Must have the ability to create, review and edit authorization documentation for completeness and accuracy in accordance with federal and DoD policy.
• Experience assessing use case and operational risk of integrated open source, and GOTS/COTS software components.
• The ability to work independently and as part of a team is needed. Must be able to interact well with others to complete work.
• Certification required as outlined in DoD Directive 8570.01-M for Information Assurance Technician Certifications (minimum of CompTIA Security ).
• Experience with Enterprise Mission Assurance Support Service (eMASS) and/or PEGA Workflow
• Proactive personality with strong oral and written communication skills is required.
• Strong attention to detail is required.
• Strong organizational and administrative skills is required.
• Ability to multitask, managing multiple areas of responsibility/simultaneous projects running in parallel is required.
• Ability to work both independently and in a team environment is required.

MINIMUM EDUCATION:

• Bachelor’s Degree in a technical discipline (i.e. Computer Science, Information Systems, Computer Engineering, etc.) or a total of 10 years of experience in lieu of degree.

DESIRED SKILLS:

• CISSP concentration in Engineering or Architecture is highly desired.
• Experience with maintaining appropriate facility security databases including, but not limited to, NISS, DISS, eMASS, e-QIP, SWFT.
• Completion of formal, Center for Development of Security Excellence (DCSA CDSE) is preferred.
• Knowledge of COMSEC operations and accountability.
• Familiar with Aircraft cybersecurity testing and Airworthiness safety programs