Your Impact:
We are seeking an Information Systems Security Officer (ISSO) 2 for a prime contract that is based out of our Columbia, MD office.
Responsibilities:
- Provide support for a program, organization, system, or enclave's information assurance program.
- Provide support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies.
- Maintain operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed.
- Assist with the management of security aspects of the information system and perform day-to-day security operations of the system.
- Evaluate security solutions to ensure they meet security requirements for processing classified information.
- Perform vulnerability/risk assessment analysis to support security authorization.
- Provide configuration management (CM) for information systems security software, hardware, and firmware.
- Manage changes to system and assess the security impact of those changes.
- Prepare and review documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
- Support security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF).
#DVS
#DIVERGENT
#DIVERGENTSOLUTIONS
Here's What You'll Need:
- Eight (8) years of combined work-related experience in the fields of IT, cybersecurity or security authorization is required.
- Bachelor's degree in Computer Science, Cyber Security or IT Engineering is required.
- In lieu of a Bachelor's degree, four (4) additional years of work-related experience may be substituted for a total of twelve (12) years.
- Compliance with DoD 8570.01-M with a minimum certification of IAM Level I is required.
- Experience in at least two of the following areas is required: knowledge of current security tools, hardware/software security implementation; communication protocols; or encryption tools and techniques.
- Familiarity with commercial security products, security authorization techniques, security incident management, and PKI and authorization services.
Must be able to:
- Provide support to senior ISSOs for implementing, and enforcing information systems security policies, standards, and methodologies
- Assist with preparation and maintenance of documentation
- Assist in the evaluation of security solutions to ensure they meet security requirements for processing classified information
- Assist with Configuration Management (CM) for information system security software, hardware, and firmware
- Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades
- Propose, coordinate, and implement information systems security policies, standards, and methodologies
- Develop and maintain documentation for Security Authorization in accordance with ODNI and DoD policies
- Provide CM for security-relevant information system software, hardware, and firmware
- Ensure compliance with system security policy
- Evaluate security solutions to ensure they meet security requirements for processing classified information
- Maintain operational security posture for an information system or program
- Provide support to the information System Security Manager (ISSM) for maintaining the appropriate operational Cybersecurity posture for a system, program, or enclave
- Develop and update the system security plan and other Cybersecurity documentation
- Assist with the management of security aspects of the information system and perform day-to day security operations of the system
- Track and ensure appropriate user identification and authentication mechanism of the information System (IS)
- Obtain system authorization for ISs under their purview
- Provide support for a program, organization, system, or enclave's information assurance program
- Plan and coordinate implementation of IT security programs and policies
- Manage and control changes to the system assessing the security impact of those changes
- Provide daily oversight and direction to contractor ISSOs
- Interact with customers, IT staff, and high-level corporate officers to define and achieve required Cybersecurity objectives
