Overview

At Criterion Systems, we developed a different kind of business—a company whose real value is a reputation for excellence built upon the collective skills, talents, perspectives, and backgrounds of its people. By accepting a position with Criterion Systems, you will join a group of professionals with a collaborative mindset where we share ideas and foster professional development to accomplish our goals. In addition to our great culture, we also offer competitive compensation and benefit packages, company-sponsored team building events, and advancement opportunities. To find out more about how Criterion can help you take your career to the next level please visit our website: www.criterion-sys.com. Criterion Systems is a Military/Veteran Friendly Company therefore we encourage Veterans to apply.

Responsibilities

We are seeking a mission-focused Information Systems Security Officer (ISSO) to support and contribute to our government customer’s success in Springfield, Virginia!

***ACTIVE SECURITY CLEARANCE REQUIRED***

The Information Systems Security Officer (ISSO) ensures that operational security postures and active security authorizations are maintained for all information processing systems within an organization. They create and maintain security artifacts such as Plans of Actions and Milestones (POAMs) and ensure that control implementations and test plans meet Assessment and Authorization (A&A) milestone requirements.

Additionally, ISSOs conduct vulnerability assessments, assist in managing POA&M resolution, and provide guidance on applying security standards throughout the IT systems life-cycle, adhering to standards such as ICD 503 and the Risk Management Framework (RMF).

Duties, Tasks, & Responsibilities 

• Conduct in-depth security reviews of program systems, applications, and services.
• Participate in security assessments and after assessment, develop a transition plan to address areas for remediation to align the application with the baseline standards.
• Ensure that appropriate operational security posture is maintained for an information system and as such, works in close collaboration with the Information System Owner (ISO).
• Conduct research, develops, implements, test, and reviews an applications information security IAW DoD/NIST RMF requirements in order to protect information and prevent unauthorized access.
• Direct the contracting team about security measures, explain potential threats, implement security measures, and monitor applications in order to meet or exceed all DoD/NIST RMF requirements, resulting in faster and more accurate software releases.
• Support the maintenance of active security authorizations for all projects/security plans (SPIDs) and of required security body of evidence (BoE) artifacts such as POAMs, control implementations and test plans to meet all Assessment and Authorization (A&A) milestone requirements.
• Oversee the continuous integration of newly developed or modernized applications and services with all enterprise security services (ESS).
• Implement all applicable manual Security Technical Implementation Guides (STIGs), vendor hardening guides and ensuring timely installation of all available patches.
• Usage of security relevant databases such as XACTA 360, Service , Continuity Planning Tool (CPT), and Software Approval Process (SWAP).

Qualifications

Required Experience, Education, Skills, & Technologies

• Active TS/SCI clearance and the ability to obtain and maintain a Polygraph clearance is required. 
• Bachelor's degree in Computer Science, Information Systems, Engineering, or other related technical or scientific discipline. 
• Minimum of five (5) years of ISSO experience in the IC and preferably NGA, for multiple SPIDs. 
• CISSP certification or Security certificate. 
• Experience in conducting security scans. 
• Experience in applying security patches and fixes.

Security Clearance Level 

• TS/SCI clearance (current); with the ability to obtain and maintain a polygraph. 

Certification 

• Certified Information Systems Security Professional (CISSP) or Security certificates. 

Work Schedule 

• Full-time on-site at designated facility. 

Pay Rate

• Pay commensurate with experience. 

Benefits Offered 

• Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Tuition/Training Assistance, Parental Leave, Paid Time Off, and Holidays.

Criterion Systems, LLC and its subsidiaries are committed to equal employment opportunity and non-discrimination at all levels of our organization. We believe in treating all applicants and employees fairly and make employment decisions without regard to any individual’s protected status: race, ethnicity, color, national origin, ancestry, religion, creed, sex/gender, gender identity/gender expression, sexual orientation, physical and mental disability, marital/parental status, pregnancy (including childbirth, lactation, and related medical conditions), age, genetic information (including characteristics and testing), military and veteran status, or any other characteristic protected by law. For our complete EEO/AA and Pay Transparency statement, please visit https://careers-criterion-sys.icims.com/.