What are the responsibilities and job description for the Information System Security Officer position at ERP International?
Overview:
ERP International, LLC (www.erpinternational.com) is currently seeking a Information System Security Officer (ISSO) supporting our DISA customer onsite at Fort Meade or the ERP office in Laurel MD with remote/hybrid options. The ISSO designs and implements information assurance and security engineering systems with requirements of business continuity, operations security, cryptography, forensics, regulatory compliance, internal counter-espionage (insider threat detection and mitigation), physical security analysis (including facilities analysis, and security management). The ISSO also assesses and mitigates system security threats and risks throughout the program life cycle. Validates system security requirements definition and provides analysis. Establishes system security designs. Implements security designs in hardware, software, data, and procedures. Verifies security requirements; performs system certification and accreditation planning and testing and liaison activities. Supports secure systems operations and maintenance.
Be the Best! ERP International is honored to be named a 2024 Top Workplace by The Washington Post! 5 Years Running
ERP Offers Employees:
ERP International is an EEO and Affirmative Action Employer of Veterans/Individuals with Disabilities.
Pay Range: $125,000-160,000. The salary range for this position is determined based on a variety of factors, including but not limited to, experience, qualifications, skill level, and location. The final salary offer will fall within this range and will be commensurate with the candidate’s background and the specific demands of the role.
About ERP International, LLC: ERP is a nationally respected provider of health, science, and technology solutions supporting clients in the government and commercial sectors. We provide comprehensive enterprise information technology, strategic sourcing, and management solutions to DoD and federal civilian agencies in 40 states. Founded in 2006, ERP is headquartered in Laurel, MD and maintains satellite offices in Montgomery, AL and San Antonio, TX - plus project locations nationwide.
Responsibilities:
ERP International, LLC (www.erpinternational.com) is currently seeking a Information System Security Officer (ISSO) supporting our DISA customer onsite at Fort Meade or the ERP office in Laurel MD with remote/hybrid options. The ISSO designs and implements information assurance and security engineering systems with requirements of business continuity, operations security, cryptography, forensics, regulatory compliance, internal counter-espionage (insider threat detection and mitigation), physical security analysis (including facilities analysis, and security management). The ISSO also assesses and mitigates system security threats and risks throughout the program life cycle. Validates system security requirements definition and provides analysis. Establishes system security designs. Implements security designs in hardware, software, data, and procedures. Verifies security requirements; performs system certification and accreditation planning and testing and liaison activities. Supports secure systems operations and maintenance.
Be the Best! ERP International is honored to be named a 2024 Top Workplace by The Washington Post! 5 Years Running
ERP Offers Employees:
- Competitive Salaries & Benefits to include Health, Dental, Vision and Retirement!
- Health Advocate & Concierge Services!
- Unlimited Job- Related Training & Development!
- Employee Recognition & Incentive Programs!
- Employee Appreciation & Company Sponsored Events!
- Opportunity to work with leading edge technology!
- Community Outreach & Charity Work!
Connect With Us! Apply online today and discover more about this exceptional employment opportunity. www.erpinternational.com
ERP International is an EEO and Affirmative Action Employer of Veterans/Individuals with Disabilities.
ERP International is committed to providing veteran employment opportunities to our service men and women.
Pay Range: $125,000-160,000. The salary range for this position is determined based on a variety of factors, including but not limited to, experience, qualifications, skill level, and location. The final salary offer will fall within this range and will be commensurate with the candidate’s background and the specific demands of the role.
About ERP International, LLC: ERP is a nationally respected provider of health, science, and technology solutions supporting clients in the government and commercial sectors. We provide comprehensive enterprise information technology, strategic sourcing, and management solutions to DoD and federal civilian agencies in 40 states. Founded in 2006, ERP is headquartered in Laurel, MD and maintains satellite offices in Montgomery, AL and San Antonio, TX - plus project locations nationwide.
Duties and Responsibilities include the following:
- Ensure that the NIST Risk Management Framework (RMF) process is integrated into each level of the information system life cycle development
- Ensure that cybersecurity requirements are allocated into the information system design
- Have working knowledge of how Security Technical Implementation Guides are implemented into the information system security posture
- Conduct preliminary assessments of vulnerability and compliance results and validate vendor mitigations to information system findings
- Work with stakeholders to ensure that cybersecurity requirements are allocated to the system design
- Research approved software and hardware products to be used with in the system
- Support requirements verification testing against the engineering design to validate the compliance of cybersecurity requirements
- Review and update SSPs as needed
- Evaluate proposed changes to a system to ensure the change does not impact the system's security
- Develop Assessment and Authorization artifacts for the information system eMASS records
- Responsible for maintaining and enforcing all Information Security policies, standards, and guidelines
- Minimum Requirements:
- Must possess a minimum of a DoD Secret Clearance
-
Bachelor’s degree in Computer Science, Information Security, Information Technology or equivalent.
- An equivalent combination of education, certifications, and relevant experience may be considered
- Five (5) years ISSO experience, or equivalent systems security related experience, and knowledge of systems functions, security policies, technical security safeguards, and operational system measures.
- IAT Level II certification
-
Experience in using the eMASS system
- eMASS Certification of Completion needed
- Experience with reviewing security documentation to evaluate the adequacy of the security plan for upgraded networks. This evaluation shall ensure security solutions are effective and meet all security requirements for processing classified information.
- Experience performing vulnerability/risk assessment analysis to support certification and accreditation.
- Experience in preparing reports such as System Security Plans (SSPs), Risk Assessments Reports, Assessment and Authorization (A&A) packages and System Requirements Traceability Matrixes (SR TMs),
- An understanding the Risk Management Framework (RMF) that uses Committee on National Security Systems (CNSS) Instruction 1253 and the National Institute for Standards and Technology (NIST) 800-53 security controls.
- Working Knowledge of National Institute Standards and Technology (NIST) 800-37, 800-53, 800-53A, 800-160 Volumes 1 & 2
- Must meet 8570 IAT II requirements to include one of the following certifications: CCNA Security, GIC SP, GSEC, Security CE, SSCP, CASP CE, CCNP Security, CISA, CISSP, GCED, GCIH
- Excellent oral and written communication skills. Be willing and able to mentor others, and exhibit demonstrated excellent customer service skills
- U.S. Citizenship is required
Preferred Qualifications:- CISSP certification
- DEVSECOPS applications to software design for cloud applications
- DoD and DISA specific experience
- DISA ACAS Certification of Completion
Salary : $125,000 - $160,000
