Information System Security Officer (ISSO) (YSCN-CD7JBW)

Springfield, VA | Full-Time

Apply Now

CSCI is searching for an experienced information security officer to design and enforce policies and procedures that protect our organization’s computing infrastructure from all forms of security breaches. You will be responsible for identifying vulnerabilities and working with our IT department to resolve them, ensuring that our network and data remain secure. To be successful as an information security officer, you should have expert analytical skills and in-depth knowledge of best practices to prevent a wide range of security threats. Top candidates will also be excellent communicators, training and educating our staff on various information security topics.

This job does not qualify for remote or hybrid work due to the nature of the work and the job responsibilities.

Responsibilities

The candidate will perform the following tasks as required and engage with their teammates to ensure their professional career is progressing at a successful rate.

  • Identify vulnerabilities in our current network.
  • Develop and implement a comprehensive plan to secure our Information Systems (IS) in accordance with the Joint Special Access Program (SAP) Implementation Guide (JSIG) Risk Management Framework (RMF).
  • Obtain Authorization to Operate (ATO) and successfully pass follow-up recertification requirements of our IS.
  • Create and maintain a Plan of Action and Milestones (POA&M) and provide to Security Control Accessor (SCA) for review.
  • Monitor network usage to ensure compliance with security policies.
  • Implement a plan, and conduct Continuous Monitoring (ConMon).
  • Keep up to date with developments in Information Technology (IT) security standards and threats.
  • Collaborate with management and the IT department to improve security.
  • Document any security breaches and assess their damage.
  • Educate colleagues about security software and best practices for information security.
  • Build and maintain positive professional relationship with the customer.

Skills - Minimum of 7 Years Experience

Experience:

The position requires a minimum of 7 years experience in the following areas:

  • Candidate must have ability to communicate effectively and with courteous professionalism while providing user support.
  • Candidate should possess good writing and editing skills to aid in writing process and general IT/IA documentation.
  • A good understanding and knowledge of various computer, network, and security systems and frameworks.
  • Exceptional verbal and written communication and customer relation skills.
  • Strong analytical, critical thinking, and problem-solving skills.
  • Ability to educate a non-technical audience about various security measures.
  • The candidate must be cleared at a Top Secret security level.
  • Experience developing, implementing, and maintaining Information Systems (IS) in accordance with the Joint Special Access Program (SAP) Implementation Guide (JSIG) Risk Management Framework (RMF).
  • Experiencing writing Assessment and Authorization (A&A) documentation and developing processes and procedures for JSIG Information Systems (IS).
  • Experience in the Information Assurance (IA) lifecycle within the RMF through at least the initial submission of an Authorization to Operate (ATO) and the follow-up recertification process of an IS.
  • Experience with the creation and maintenance of a Plan of Action and Milestones (POA&M).
  • Experience conducting Continuous Monitoring (ConMon) Plans of an IS.
  • Experience with running Security Content Automation Protocol (SCAP) tools for Windows and Linux Operating Systems.
  • Expertise reviewing IS compliance of Defense Information System Agency (DISA) Secure Technical Implementation Guides (STIG) for Windows and Linux Operating Systems.

Desirable Additional Experience:

  • Experience implementing and managing Ivanti Device Control, Nessus Security Scanner, and Splunk.
  • Experience with Windows and Linux Operating Systems, along with basic knowledge of both Windows and Linux auditing.
  • Basic to mid-level technical Information Technology (IT) administration and/or engineering background.

Education:

BA/BS in Information Technology, Computer Science, or related discipline.

Requirements - US Citizen / Top Secret/SCI Clearance

Training/Certifications:

DoD Manual 8570 IAM Level II certification

U.S. Citizenship:

Yes

Minimum Clearance:

Applicants are required to have, at a minimum, a TOP SECRET (TS) clearances with Sensitive Compartmented Information (SCI) eligibility based on a Single Scope Background Investigation (SSBI) completed within the last 5 years.

Pay Range

$91,000 – $123,000 – $155,000

The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal responsibilities from time to time, as needed.

CSCI stands in support of equality for and advancement of all people based solely upon the merits of abilities and actions alone, without regard to race, creed, color, sex, age, national origin or disability.

Apply Now