Job Summary:

At SandTech Solutions we are committed to “Enabling Success” of our client’s missions. As such, we are searching for the right as the Information Systems Security Officer (ISSO), who:

Minimum Clearance Required:

• Top Secret with Special Compartmented Information (SCI) eligibility, Special Access Programs, and Counterintelligence Polygraph

Education/Certification Requirements:

• Bachelor’s degree or equivalent work experience and certifications
• Compliant with DoD Manual 8140.03 (CGRC/CAP, CASP , CCSP, Cloud , SSCP, Security , GSEC)

Work Experience & Skill Requirements

• 3-5 years of Cyber Security experience
• 2 Years of IT experience (Networking/System Administration)
• Working knowledge of security system controls, policies, technical security safeguards, and operational security measures
• Familiarity with DoD STIG process.
• Excellent verbal and written communication skills.
• Executing the security assessment and authorization (or ATO) process with independent assessors
• Executing Continuous Monitoring and maintaining the security posture of IT systems day to day
• At least 5 years of direct experience and in-depth working knowledge of FISMA and NIST Information Security Guides
• Advanced written and verbal communication skills
• Experience with certification and accreditation (C&A) or A&A and as a security control assessor or validator.
• Experience with developing, implementing, and maintaining guidelines, policies, and procedures supporting a cybersecurity program.
• Experience with developing and managing continuous monitoring and plans of action and milestones (POA&M)
• DoD IS knowledge and experience is preferred
• Must be highly organized and detail oriented
• Must be able to take initiative and work independently or as a member of a team.
• Must demonstrate proficiency in the following areas: multi-tasking, critical thinking; and the ability to work quickly, efficiently, and accurately in a dynamic and fluid environment
• Familiar with NIST publications, specifically RMF and NIST controls
• Experience developing A&A documentation from scratch and performing assessments; RMF step 1 - 6
• Working knowledge of Enterprise Mission Assurance Support Services (eMASS) and XACTA

Primary Responsibilities:

• Experience with continuous monitoring and plans of actions and milestones (POA&Ms)
• Must be able to work in a constantly changing regulatory environment with short, mid, and long term timelines for remediating any non-compliance
• Must be able to work well within a team environment and able to adapt quickly to change
• Maintain cybersecurity procedures and processes as assigned
• Able to analyze, interpret, and apply Federal cybersecurity guidance to customer needs
• Communicate the security posture of systems through designated reporting mechanism
• Assist in preparation and review documentation to include System Security Plans (SSPs), Risk Assessment Reports (RAR), and other Assessment & Authorization (A&A) artifacts
• Assist in the research and address information security issues as required, and develop and maintain the Plan of Action and Milestones (POA&M) and support remediation activities
• Develop and advise development of Assessment and Authorization (A&A) artifacts and security documentation to include, but not limited to System Security Plans (SSP), Plan of Action and Milestone (POAM), Contingency Plan, Incident Response Plan, Configuration Management Plan
• Assist with pre-assessment preparation
• Perform Risk Management Framework (RMF) activities to achieve Authority to Operate (ATO).
• Perform continuous monitoring of security controls to ensure that they are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the cybersecurity requirements for assigned IT systems.

Physical Requirements:

• Prolonged periods of sitting at a desk and working on a computer.
• Must be able to lift up to 15 pounds at times.

AAP/EEO Statement

It is the policy of SandTech Solutionsto provide an equal employment opportunity for all applicants and employees. The Company does not unlawfully discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, national origin, ancestry, age, medical condition, disability, workers’ compensation status, or veteran status.

Job Information Summary:

Location: Las Vegas, NV - Onsite

Job Type: 40 hours per week

At SandTech, our employees enjoy benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), life insurance, paid time off program with paid holidays and various wellness programs. Additionally, our career path planning assists employees with their professional goals.