Information Systems Security Officer
| Company | CACI |
|---|---|
| Location | Annapolis Junction, MD, USA |
| Salary | $120800 – $265800 |
| Type | Full-Time |
| Degrees | Bachelor’s |
| Experience Level | Expert or higher |
Requirements
- Current Active TS/SCI with POLY
- Ten (10) years of combined work-related experience in the fields of IT, cybersecurity or security authorization is required. Experience in several of the following areas is required: knowledge of current security tools, hardware/software security implementation; communication protocols; or encryption tools and techniques. Familiarity with commercial security products, security authorization techniques, security incident management, and PKI and authorization services.
- Bachelor’s degree in Computer Science or a related field (e.g. General Engineering, Computer Engineering, Electrical Engineering, Systems Engineering, Mathematics, Computer Forensics, Cybersecurity, Information Technology, Information Assurance, Information Security, and Information Systems) is required. In lieu of a Bachelor’s degree, four (4) additional years of work-related experience may be substituted.
- DoD 8570 compliance with IAM I is required. The following certifications qualify: CAP, CND, Cloud+, GSLC, Security+ CE, HCISPP
Responsibilities
- Maintaining the operational security posture of information systems and programs, ensuring that all security policies, standards, and procedures are implemented and adhered to.
- Assisting in managing the security aspects of information systems and performing day-to-day security operations to safeguard against potential threats.
- Evaluating security solutions to ensure they meet stringent security requirements for processing classified information, performing vulnerability and risk assessments to support security authorization, and managing configuration management (CM) processes for information systems security software, hardware, and firmware.
- Preparing and reviewing critical documentation such as System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
- Supporting security authorization activities in alignment with the National Institute of Standards and Technology Risk Management Framework (NIST RMF).
Preferred Qualifications
- Familiarity with Network Security Services and Chief Information Security Officer processes and procedures.