You haven't searched anything yet.
Information System Security Officer/Manager (ISSO)/ISSM
Located Washington DC- Hybrid role-2 days in a week onsite role
Job DescriptionDescription
Client is looking for an Information Systems Security Analyst to join our team supporting an important US government agency in the National Capital Region. This is an exciting opportunity to work with a team responsible for IT Security Risk and Compliance support by providing direct support to the Information System Security and Privacy Officer (ISSPO) in managing and documenting the ongoing security posture of the agency. The Information Systems Security Analyst will support IT management with control assessment, development, and maintenance, and risk assessment and response development. Specifically, this job requires the following:· Develop and maintain IT security controls per NIST SP 800-53 and Agency Security Policy standards.· Collect and validate control implementation statements from subject matter experts.· Consult with experts to ensure work instructions align with agency security standards.· Conduct risk assessments for security issues and propose resolutions.· Document and communicate control deficiencies for POA&M consideration.· Support Continuous Security Monitoring for compliance with agency Security Policy· Assist in developing security policies, ensuring compliance, and updating documentation.· Conduct security reviews for changes impacting hardware, software, baselines, connections, or applications.· Review and assess POA&M outputs, recommending additional work or closure.· Support IT Governance, Risk, and Compliance activities, including standards management.· Provide information for status reports, briefings, schedules, and project plans in written and oral form.This role requires on site work in Washington, D.C. 2 days per week.
QualificationsEDUCATION &
EXPERIENCE:· Undergraduate degree with five years or Graduate degree with three years IT control or IT security experience in a technical environment with a variety of IT systems.· One or more current Security certifications (CISSP, CISM, Security ). REQUIRED SKILLS:· Experience with NIST Risk Management and Cybersecurity Framework, FISMA, NIST 800-53, and IT control processes.· Familiarity with GRC frameworks/tools (RSAM, CSAM) and SA&A tools (Xacta).· Knowledge of cyber-attack patterns, Tactics, Techniques, and Procedures.· Ability to adapt security processes/tools to evolving landscapes and risk scenarios.· Understanding of PKI, encryption, hashing techniques, and OMB circulars A-123, A-130.· Fluency in spoken/written English for technical content, with strong communication skills.· High-quality deliverables with minimal edits, quick review, and feedback on federal security doctrine.· Thrives in a fast-paced environment, outstanding customer service skills.· Document processes, explain complex policies in simple terms.· Stays updated on IT trends, security standards, excellent analytical thinking, and problem-solving skills. Candidates for consideration must be eligible to obtain and maintain a Public Trust clearance.
DESIRED SKILLS: A solid understanding of IT security controls, tools, and concepts. Experience working in a technical environment with IT platforms such as Microsoft Office 365, Azure, Cisco, Oracle, etc. is also desired.
Job Type: Contract
Pay: $48.08 - $65.00 per hour
Benefits:
Schedule:
License/Certification:
Ability to Commute:
Ability to Relocate:
Work Location: In person
Contractor
$124k-150k (estimate)
04/24/2024
04/24/2024
webtreetechnology.com
<25
The job skills required for Information System Security Manager (ISSM) include Risk Management, IT Security, Cybersecurity, CISSP, Risk Assessment, Problem Solving, etc. Having related job skills and expertise will give you an advantage when applying to be an Information System Security Manager (ISSM). That makes you unique and can impact how much salary you can get paid. Below are job openings related to skills required by Information System Security Manager (ISSM). Select any job title you are interested in and start to search job requirements.
The following is the career advancement route for Information System Security Manager (ISSM) positions, which can be used as a reference in future career path planning. As an Information System Security Manager (ISSM), it can be promoted into senior positions as a Cyber Security Architect Director that are expected to handle more key tasks, people in this role will get a higher salary paid than an ordinary Information System Security Manager (ISSM). You can explore the career advancement for an Information System Security Manager (ISSM) below and select your interested title to get hiring information.