Information Systems Security Officer III - PIPELINE (TS/SCI w/ Polygraph)

Description

COMSO, Inc. is a powerhouse when it comes to empowering federal government stakeholders to fulfill their mission with confidence and efficiency. Our staff brings knowledgeable IT systems expertise, software development proficiency, innovative learning solutions for workforce development, and exceptional operations and production support. We were founded in 1988, and remain a recognized woman owned small business, operating in several states including Maryland, Georgia, Hawaii, Texas, and Alaska. We are honored to be recognized as a Top Workplace for seven years running by the Baltimore Sun Media Group.

**SECURITY CLEARANCE IS REQUIRED: TS/SCI w/ POLYGRAPH BEFORE CONSIDERATION**

This position is contingent upon contract award.

Qualifications:

• Bachelor’s degree in Computer Science or related discipline from an accredited college or university is required. 
• Five (5) years of additional experience as an ISSO may be substituted for a bachelor’s degree. 
• DoD 8570 compliance with Information Assurance Management (IAM) Level I is required.
• If assigned to DES Mobility Services tasks, experience with security policies in a mobile environment is required, including infrastructure and end user.
• Fifteen (15) years' experience as an ISSO on programs and contracts of similar scope, type, and complexity is required. Three (3) of those years must include experience in at least three (3) of the following: - 
• Current security tools; 
• Hardware/software security implementation
• Communication protocols
• Encryption techniques/tools

Job Description:

• Provide support for a program, organization, system, or enclave’s information assurance program. 
• Provide support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies. 
• Maintain operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed. 
• Assist with the management of security aspects of the information system and perform day-to-day security operations of the system. 
• Evaluate security solutions to ensure they meet security requirements for processing classified information. Perform vulnerability/risk assessment analysis to support certification and accreditation. 
• Provide configuration management (CM) for information system security software, hardware, and firmware. 
• Manage changes to system and assesses the security impact of those changes.
• Prepare and review documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). 
• Support security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF).

The Level 3 Information System Security Officer shall possess the following capabilities:

• Provide support to senior ISSOs for implementing, and enforcing information systems security policies, standards, and methodologies 
• Assist with preparation and maintenance of documentation 
• Assist in the evaluation of security solutions to ensure they meet security requirements for processing classified information 
• Assist with the CM for information system security software, hardware, and firmware 
• Maintain records on workstations, servers, routers, firewalls, intelligent hubs , network switches, etc. to include system upgrades
• Propose, coordinate, implement, and enforce information systems security policies, standards, and methodologies 
• Develop and maintain documentation for C&A in accordance with ODNI and DoD policies 
• Provide CM for security-relevant information system software, hardware, and firmware 
• Develop system security policy and ensures compliance 
• Evaluate security solutions to ensure they meet security requirements for processing classified information 
• Maintain operational security posture for an information system or program 
• Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational Cybersecurity posture for a system, program, or enclave
• Develop and update the system security plan and other Cybersecurity documentation 
• Assist with the management of security aspects of the information system and perform day-to-day security operations of the system
• Administer the user identification and authentication mechanism of the Information System (IS) 
• Prepare and maintain documentation 
• Evaluate security solutions to ensure they meet security requirements for processing classified information 
• Perform CM of information system security software, hardware, and firmware 
• Propose, coordinate, and implement, information systems security policies, standards, and methodologies and ensure they are followed 
• Develop and maintain documentation for C&A in accordance with ODNI and DoD policies 
• Evaluate security solutions to ensure they meet security requirements for processing classified information 
• Obtain C&A for ISs under their purview 
• Provide support for a program, organization, system, or enclave’s information assurance program 
• Plan and coordinate the IT security programs and policies 
• Manage and control changes to the system and assessing the security impact of those changes 
• Develop system security policy and ensures compliance 
• Provide daily oversight and direction to contractor ISSOs 
• Serve as an ISSM

Benefits:

• 100% company-paid Medical deductible w/ low premiums, Dental, Vision
• Flexible Spending Account (FSA)
• Short-term & Long-term Disability
• 401K: 6% dollar-for-dollar match (vested immediately)
• Parental Leave (same amount of time for mother & father)
• Paid Time Off
• 11 Federal Holidays
• Birthday Holiday
• 2-week fully paid Sabbatical every 5 years
• Emergency Facility Closure Days

COMSO, Inc. is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender, gender identity, national origin, disability, or protected Veteran status.