Overview

Information Systems Security Officer (ISSO)(SLMR-2023-18672)

Bowhead seeks a Spectrum Manager in the Quantico, VA area familiar with Land and Mobile Radio systems

Responsibilities

•  Ensure FBI Information Systems (ISs) are operated, maintained, and disposed of in accordance withOCIO approved security policies and practices.
•  Ensure that all users have the requisite security clearances, authorization, and need-to-know beforegranting access to the IS, and administering/witnessing signing of user agreements and/or Rules ofBehavior document.
• Ensure a secure process for disseminating, controlling, and managing the issuance of useridentifications and passwords for assigned ISs, and providing authorized lists to appropriate systemadministrators.
• Work closely with the Network Architect and System Administrators to ensure security practices arefollowed according to FISMA standards.
•  Ensure a secure process for managing changes in user access to ISs (as required access and need-toknowchange) and terminating user access when it is no longer required or authorized, according toestablished policy requirements.
• Ensure system security requirements are addressed during all phases of the IS lifecycle Ensure implementation of a configuration management plan for software, hardware, and firmware isdocumented and maintained, and serving as a member of the Configuration Management Board, withISSM and System Owner concurrence.
• Manage, review, and release of media and/or memory components. Ensure the system audit log is configured to capture required audit elements; reviewing audit logsweekly; investigating anomalies and notifying the system owner, ISSM, and ESOC, and submittingsecurity incident reports when appropriate.
• Serve as a resource for recognizing and reporting IT security incidents. Conduct an immediate preliminary assessment when there is suspicion or evidence of a possible ISsecurity incident to determine the sensitivity of the information potentially compromised, whether theinformation was subjected to loss, and whether unauthorized disclosure occurred. Ensure all IT security incidents or violations are reported to the CSO, ISSM, and ESOC via phone orSecret Enclave email, depending on urgency, and then submit a report through Security IncidentReporting System (SIRS).
• Perform a risk assessment on behalf of the SO, in the event of an information spillage, to determinemitigation procedures, in consultation with the Intelligence and Risk Analysis Unit (IRAU), ESOC,and the ISSM
• Determine, in consultation with IRAU and ESOC, when sanitizing and declassifying proceduresdetailed in PD 0506D, Destruction of Classified and Sensitive Material, must be implemented Support the CSO in reinforce all employees (or to users of assigned systems) the IS Security IncidentResponse Program (Incident Response for FBI ISs Policy Guide (0924 PG)), and the responsibilityfor timely reporting of security incidents in accordance with the Security Compliance Program PolicyGuide.
• Coordinate with IT and security personnel in IS recovery and in the correction or mitigation of causesof security incidents.
• Utilize Tennable Security System products in particular NESSUS and SecurityCenter.
• Perform annual review, training, and testing of IRP of assigned information systems.

Qualifications

• Requires at minimum 3 years serving as an Information Systems Security Officer (ISSO) at a cleared facility. A minimum of 5 years work experience in a computer science or Information Assurance related field. At least one of the following certifications: Certified Information Systems Security Professional (CISSP), Global Information Security Professional (GISP), or theCompTIA Advanced Security Practitioner (CASP) or other certifications exemplifying skill sets such asthose described in DoD Instruction 8570.1 IAM Level III proficiency.

• Familiarity with the use and operation of security tools including Tenable, Nessus and/or SecurityCenter, IBM Guardium, HP Weblnspect, or like applications and Network Mapper (NMAP).

• Must be able produce well written products that are reviewed by Executive management. 

• Education – Preferred a bachelor's or advanced degree in Computer Science, Information Assurance, orother cyber discipline.i.

• TS Clearance

Physical Demands:

• Must be able to lift up to 25 pounds
• Must be able to stand and walk for prolonged amounts of time
• Must be able to twist, bend and squat periodically

SECURITY CLEARANCE REQUIREMENTS: Must currently hold a security clearance at the Top Secret level. US Citizenship is a requirement for Top Secret clearance at this location.

#LI-BG1