Information System Security Officer - TS/SCI Cleared

Information System Security Officer

About KAPS Solutions:
KAPS Solutions is a leading small business provider of business consulting services within the DoD and Intelligence Community. As a woman-owned small business, we promote a family-like atmosphere, access to executives, and team social engagements. We pride ourselves in teamwork and collaboration, work-life balance, and helping clients succeed at their missions. Join KAPS Solutions today and unlock your full potential!

Location: Springfield, VA

Clearance Required: TS/SCI (CI Polygraph conducted after employment begins)

This is a future opportunity not yet awarded

Overall Assignment Description:

The candidate will design and evaluate end-to-end systems through their entire life cycle. Ensure products and systems comply with requirements and customer information assurance and cyber security standards and practices through formal verification methods with specific emphasis on network operations and cyber warfare tactics. Develop and coordinate all authorization documentation associated including the Systems Categorization, Systems Security Plan, and Systems risk assessment. Support the control assessment, reporting, and monitoring processes. Support and document security controls tests, assist in remediation and ensure that POA&Ms are appropriately managed. Conduct assessments of information systems security requirements, evaluate current security posture, and recommend priorities for remediation. Review information system infrastructure and application architecture to assess security requirements. Review existing SA&A documentation, Security Assessment Report, and security infrastructure (i.e., IDS, firewalls, vulnerability scan tools, etc.). Perform and document risk assessments, analyzing security vulnerabilities, and the metrics to measure the risks associated with those vulnerabilities. Based on the risk profile of the analyzed systems, development and documentation of a Plan of Action and Milestones (POA&M) for mitigating those risks. Design and develop comprehensive Systems Security Plan, covering at a high level the infrastructure, policies and procedures which define the systems security profile for the analyzed systems. Design, develop, and validate System Test and Evaluation (ST&E) reviews for new and/or legacy systems. Review and conduct NIST-based Self Assessments, identifying any weaknesses which need to be addressed, and developing a POA&M for each of those weaknesses based on industry best practices.

Required Skills and Demonstrated Experience:

• 5 years' experience performing systems security assessments, preparing system security documentation, and/or performing security upgrades for live networks, desktop systems, servers, and enterprise data bases leading to successful certification and accreditation or security authorization of such systems.
• 5 years' experience assessing and enhancing IT systems security policies and procedures in response to the regulatory requirements associated with Federal and International standards.
• 5 years’ IT Security experience with extensive knowledge in security regulations and security assessments having developed numerous security C&A (or SA&A) and ATO on a range of systems including classified systems.
• Bachelor's degree in computer science or related technical discipline or 4 years of additional related experience
• Experience with systems design and modeling

Salary Range: $130,000 – $140,000

Job Type: Full-time

Pay: $130,000.00 - $140,000.00 per year

Benefits:

• 401(k)
• 401(k) matching
• Dental insurance
• Flexible spending account
• Health insurance
• Health savings account
• Life insurance
• Paid time off
• Parental leave
• Relocation assistance
• Tuition reimbursement
• Vision insurance

Work Location: In person

Salary : $130,000 - $140,000