Information System Security Officer

Our client in Buffalo, NY, is looking for an Information Systems Security Officer.

This is an on-site/full-time/direct hire position.

Salary based on experience: $60k-$90k

Primary Responsibilities:

• Configure, support, and maintain Red Hat Linux servers and clients, Windows Server operating systems, and networks in a variety of traditional and virtual environments
• Develop and maintain System Security Plans (SSP) and related documentation such as the Plan of Action & Milestones (POA&M), Risk Assessment Report, and Continuous Monitoring Strategy
• Ensure systems are operated, maintained, and disposed of following security policies and procedures
• Comply with current cybersecurity policies and concepts when designing, procuring, adopting, and developing new IS
• Respond to and remediate IS incidents
• Ensure audit records are collected and analyzed following policies and procedures
• Conduct network, system, and application vulnerability scanning, configuration assessment, and remediation
• Maintain a working knowledge of system functions, security policies, technical security safeguards, and operational security measures
• Assist with the development and implementation of an effective IS security education, training, and awareness program
• Prepare for and participate in periodic compliance assessments and inspections
• Ensure account management and configuration documentation is complete, maintained, and reviewed on a periodic basis (change tracking, maintenance logs, etc.)

Qualifications:

• Associate's degree or higher in Computer Science, Information Technology, Computer Information Systems, or related field preferred
• IT security experience in DoD Industrial Security is required (technical experience and skills, and industry IT certifications may be considered substitutes for education and DoD security experience)
• Experience with 32 CFR Part 117 (NISPOM), DAAPM, NIST RMF (SP 800-53)
• Technical experience securing networks and systems utilizing Defense Information Systems Agency (DISA) STIGs and/or Security Requirements Guide (SRGs)
• Possess a DoD 8570.01-M IAM II baseline certification or be able to obtain one within 6 months (current CISSP certification preferred)
• Excellent written and verbal communication skills
• Must be able to maintain a U.S. government security clearance, but an in-scope Secret or higher US Government clearance is highly preferred
• The successful candidate will be subject to a pre-employment investigation and must meet all eligibility requirements for access to classified information

Applicants must be authorized to work in the U.S.

We are an equal-opportunity employer. We do not discriminate in hiring or employment against any individual based on race, color, gender, national origin, ancestry, religion, physical or mental disability, age, veteran status, sexual orientation, gender identity or expression, marital status, pregnancy, citizenship, or any other factor protected by anti-discrimination laws.