Information Systems Security Officer (ISSO)

Ciqima Federal Services is looking to hire several Information Systems Security Officers (ISSO). The Information Systems Security Officer (ISSO) plays a key role in the management and upkeep of information technology (IT) equipment and systems. As part of a larger support team, the Systems Administrator will centrally support cybersecurity solutions for Military Health System clients. The ISSO performs independent thinking about security solutions. We are currently hiring for locations at Vandenberg AFB, Luke AFB, Offutt AFB, F.E. Warren, Holloman AFB, Beale AFB and Charleston AFB.

CLIENT: Military Health Systems (MHS) / Defense Health Agency (DHA) – Clinic Chief Information Officer (CIO)

ESSENTIAL DUTIES & RESPONSIBILITIES:

• Centrally initiate and Manage MTF Infrastructure RMF Packages for each market/regional MTF.
• Centrally initiate and manage a single RMF Package for the standardized IT Shared Services Hosting Environment deployed to all market/regional MTFs.
• Provide subject matter expertise in all cyber security initiatives and help in explaining new guidance.
• Create RMF Package Implementation Plans for each MTF Infrastructure.
• Create RMF Package Security Plans for each MTF Infrastructure.
• Create RMF Package Implementation Plan for the standardized IT Shared Services Hosting Environment.
• Create RMF Package Security Plan for the standardized IT Shared Services Hosting Environment.
• Comply with all RMF requirements to successfully maintain Approval to Operate (ATO) status.
• Create and/or acquire and maintain artifacts for MTF Infrastructure and IT Shared Services Risk Management Framework (RMF) Packages.
• Initiate POAMs, as needed, for MTF Infrastructure and IT Shared Services.
• Prepare MTFs, Regional Teams, and environments for the IV&V process.
• Perform activities to support medical PMOs with receiving and maintaining ATC/ATO from DHA for new or existing systems and applications.
• Perform Continuous Vulnerability Monitoring for all regional MTFs.
• Initiate regular and as-required scans of MTF Infrastructures, IT Shared Services, and Medical Servers and Applications.
• Report vulnerabilities to appropriate POCs and monitor their mitigation.
• Provide support in development and implementation of LAN/WAN/PC/Server-related security policies.
• Maintain Inventory of current MTF Infrastructure and IT Shared Services components and the overall ATC/ATO status.
• Track the current ATO/ATC status for medical systems deployed throughout the region.
• Maintain library of firewall exceptions for regional MTF Infrastructure, IT Shared Services, medical servers/applications.
• Draft documentation needed to announce new cyber security initiatives and participate in building and implementing processes surrounding cyber security.
• Provide cyber security reports to DHA leadership
• Conduct scans and participate in the process to obtain ATO status for systems determined by DHA and/or MTF leadership.
• Comply with MTF cyber security program implementation plan.
• Ensure compliance with DHA management policies.
• Ensure compliance with data security policies and relevant legal and regulatory requirements in accordance with DHA directives and applicable RMF requirements.
• Ensure appropriate changes and improvement actions are implemented as required.
• Maintain current knowledge of authenticator management for unclassified systems.
• Ensure compliance with protection requirements, control procedures, incident management reporting, remote access requirements, and system management for all systems under scope.
• Submit and track new requirements for operation on the DHA network.
• Centrally/Locally manage IT system using enterprise tools provided by the DHA.

QUALIFICATIONS:

• Bachelor’s Degree in a related field
• Security Certification
• Experience with DoD Risk Management Framework
• Minimum one year experience as an Information Systems Security Officer
• Background Investigation Tier 5 (SSBI), IAT Level 2 ADP/IT II

The position will be performed on-site and will generally encompass a standard work week spanning Monday through Friday during regular business hours.

US Citizenship Required - Candidate will need to obtain a DoD Tier 5 (SSBI), IAT Level 2 ADP/IT II

Benefits Include:
401(K) Plan with Employer Match, Health Insurance (medical, dental, and vision), Paid PTO, Flexible Spending Accounts (Health and Dependent Care), Life insurance, short term and long-term disability, Full Holiday Schedule and more.

This company, its subsidiaries, and joint ventures will provide equal employment opportunities to all persons and prohibits employment decisions based on race, religion, color, creed, national origin, sex, age, disabling condition, political affiliation, protected veteran’s status, or sexual orientation. All selection, hiring, and promotion decisions will be based on valid job-related requirements consistent with performance of the essential functions of the position. This policy is in keeping with Executive Order 11246, as amended, Title IX of the Education Amendments of 1972, the Equal Pay Act of 1963, Sections 503 and 504 of the Rehabilitation Act of 1973, the Civil Rights Restoration Act of 1988, the Vietnam Veterans Readjustment Assistance Acts, as amended, and other applicable federal and state laws. Pursuant to PL 93-638, as amended, preference may be given qualified to the Corporation’s Shareholders, including their spouses and descendants, during the hiring process to the maximum extent permitted by law.