You haven't searched anything yet.
ISSO
· Supports the operation and maintenance of assigned business applications in accordance with the National Gallery’s IT security program’s established policy.
· Maintains the catalog of assigned IT enterprise and departmental business applications with information including but not limited to: (i) system points of contact, (ii) vendor point of contact, (iii) Tier, (iv) location, (v) type (i.e., Cloud, on-premise, hybrid, colocation, etc.).
· Serves as a primary contact for coordination, implementation, and/or enforcement of information security policies (e.g., account management, configuration management etc.)
· Participates in implementation of systems security policies, standards, and procedures related to the assigned business applications.
· Ensures interconnection security agreements (ISA) are in place for key interfaces.
· Ensures backup and restore tests are performed annually for on-premise business applications.
· Participates in fusion teams to review vendor capabilities and security posture for potential new systems within scope of responsibility.
· Works with the operations team and vendors to patch system vulnerabilities and perform timely upgrades.
· Reviews vendor capabilities and security posture for potentially new IT systems/applications/services and provide recommendations on risk.
· Collaborates with the CISO, CIO, system managers, and other stakeholders to finalize IT security requirements for third-party IT systems/applications/services.
· Work with the National Gallery’s Contracts and Procurement Office (APC) to ensure all applicable IT security requirements are included within issued IT system/application/services contracts.
· Ensure vendors/contractors/providers comply with the Gallery IT security policies and procedures established as part of the third-party risk management program.
· Review results of vulnerability scans (internal or third-party) for third-party applications/systems/devices and work with the appropriate system managers and operations (TDS-OPS) personnel to remediate critical and high vulnerabilities.
· The ISSO possesses strong qualifications in information technology and at least 3 years of progressive IT security experience at a similarly complex organization.
· Candidate has a bachelor’s degree in information technology, computer science, engineering, or equivalent degree. One or more certifications in the area of IT security (Security , CAP, SSCP, CEH, etc.) is preferred but not mandatory.
· Knowledge of functions that focuses on the systems, to support, monitor, test, and troubleshoot hardware and software problems pertaining to the computing environment, network environment.
· Knowledge of SP 800-53 security controls and its applicability to IT systems.
· Demonstrates ability to stay current with evolving technology in IT security, e.g., identity and access management tools, patch management and software distribution tools (e.g., Ivanti, Casper, etc.)
· Demonstrates technical experience to include experience with Windows, Mac and/or Linux systems.
· Ability to plan and organize work, and meet deadlines with little to no supervision.
The work is performed in a normal office environment. Telecommute option is available 3 days a week with 2 days on-site at the office.
Job Type: Full-time
Pay: $125,000.00 - $145,000.00 per year
Benefits:
Schedule:
Education:
Experience:
License/Certification:
Ability to Commute:
Work Location: Hybrid remote in Washington, DC 20565
Full Time
$93k-117k (estimate)
09/11/2024
01/06/2025
thebesttalentservices.com
Bethany Beach, DE
<25
The job skills required for Information System Security Officer (ISSO) include Information Security, IT Security, Risk Management, Computer Science, Security Controls, Security Systems, etc. Having related job skills and expertise will give you an advantage when applying to be an Information System Security Officer (ISSO). That makes you unique and can impact how much salary you can get paid. Below are job openings related to skills required by Information System Security Officer (ISSO). Select any job title you are interested in and start to search job requirements.
The following is the career advancement route for Information System Security Officer (ISSO) positions, which can be used as a reference in future career path planning. As an Information System Security Officer (ISSO), it can be promoted into senior positions as a Systems/Application Security Analyst, Sr. that are expected to handle more key tasks, people in this role will get a higher salary paid than an ordinary Information System Security Officer (ISSO). You can explore the career advancement for an Information System Security Officer (ISSO) below and select your interested title to get hiring information.
If you are interested in becoming an Information System Security Officer, you need to understand the job requirements and the detailed related responsibilities. Of course, a good educational background and an applicable major will also help in job hunting. Below are some tips on how to become an Information System Security Officer for your reference.
Step 1: Understand the job description and responsibilities of an Accountant.
Quotes from people on Information System Security Officer job description and responsibilities
Security officers update anti-virus software and monitor employee access levels.
03/13/2022: Savannah, GA
They develop policies that give managers and employees varying levels of access to corporate applications, systems and data, and they monitor access to ensure compliance.
03/01/2022: Muskegon, MI
Step 2: Knowing the best tips for becoming an Accountant can help you explore the needs of the position and prepare for the job-related knowledge well ahead of time.
Step 3: View the best colleges and universities for Information System Security Officer.