Your Impact:

The ISSO will be responsible for ensuring that the appropriate operational security posture is maintained for each assigned information system or product. The ISSO is responsible for the day-to-day implementation, oversight, and maintenance of the security configuration, practices, and procedures for each product under the ISSO's purview in accordance with federal policies and guidelines. Work with ESOC, OGC, product managers and system owners to ensure complete security of the product. This position is a hybrid role. 3 days onsite and 2 days remote each week.

ISSO duties and responsibilities fall into five main areas:

• Security operations and management (including access control and other 
  Policy implementation)
• Security planning/documentation (i.e. FISMA Compliance, SSP, ATO, etc.)
• Security monitoring and evaluation (including audit, assessment and risk management)
• Security awareness and training
• Security incident reporting and response management (i.e. POA&Ms, etc.). 

Functional Responsibilities:

• Notify ISSM when changes occur that might affect the authorization determination of the information system(s)
• Conduct periodic reviews of information systems to ensure compliance with the security authorization package
• Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly
• Ensure all IS security-related documentation is current and accessible to properly authorized individuals
• Attend required technical and security training (e.g., operating system, networking, security management) relative to assigned duties
• Execute the cyber security portion of the self-inspection, to include provide security coordination and review of all system assessment plans
• Identify cyber security vulnerabilities and assist with the implementation of the countermeasures for them
• Prepare reports on the status of security safeguards applied to computer systems
• Perform ISSO duties in support of in-house customers.

#dvscyber#divergent

Here’s what you’ll need:

• Top Secret Clearance and ability to pass Counter Intelligence polygraph experience.
• Bachelor's Degree in computer science- or cyber security-related field or a minimum five (5) years work experience in a cyber security-related field.
• Familiar with the use and operation of security tools such as, but not limited to: Tenable’s, Nessus and/or SecurityCenter, IBM Guardium, HP WebInspect, or like applications and Network Mapper (NMAP).
• Additionally, the ISSOs will be certified in at least one of the following during the life of the contract:
  • International Information Systems Security Certification Consortium (ISC²)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information System Security Officer (CISSO)
  • The Global Information Assurance Certification (GIAC) Information Security Professional (GISP)
  • Computing Technology Industry Association (CompTIA) Advanced Security Practitioner (CASP)
  • Or other certifications exemplifying skill sets such as those described in DoD Instruction 8570.1 IAM Level III proficiency

Preferred:

• Prior performance in roles such as System or Network Administrator
• Hands on mid to senior-level experience
• Working knowledge of using the Xacta software