Senior Information System Security Officer – Isso

Senior Information System Security Officer – Isso

Requirements

• Bachelor’s degree in a related field and at least 12 years of relevant experience. Additional experience may be substituted for a degree.
• TS/SCI with polygraph security clearance.
• Must have at least 10 years of experience as ISSO working independently, and/or on teams maintaining secure information system operations in isolated, connected and standalone environments.
• Must have at least 5 years of experience using tools to support IAVA management.
• Must have at least 5 years of experience using tools to support the preparation, maintenance, and management of SSPs and other security related documentation.
• Demonstrated knowledge of and experience with several of the following: current security tools; hardware/software security implementation; communication protocols; encryption techniques/tools.
• In-depth experience completing security evaluations of software systems or architectures to ensure they meet security requirements.
• In-depth experience proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies, preferably on a large software or IT program.
• Demonstrated experience performing day-to-day security operations of large, complicated information and information processing systems.
• Must be committed to developing and adhering to best practices.
• Must possess a high level of self-initiative and must be a solutions-oriented team player.
• Must have excellent interpersonal skills.

Responsibilities

• Provide support for implementing and enforcing information systems security policies, standards, and methodologies.
• Assist in the evaluation of security solutions to ensure they meet security requirements for processing multiple types of information.
• Assist with the Configuration Management for information system security software, hardware, and firmware.
• Analyze threats and develop and implement best practice methodologies for incident detection, reporting, and vulnerability remediation.
• Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades.
• Evaluate security solutions to ensure they meet security requirements for processing information.
• Maintain operational security posture for information systems.
• Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system/program/enclave.
• Develop and maintain documentation for Certification & Accreditation in accordance with specified policies.
• Develop and update system security plans and other IA documentation.
• Provide support for Information Assurance Vulnerability Alerts (IAVAs) management (initiating IAVA responses and system security scans, completing remediation, extending IAVA patches and security updates to designated sites, etc.).
• Provide CM for security-relevant information system software, hardware, and firmware.
• Develop system security policy and ensure compliance.
• Administer the user identification and authentication mechanisms of the Information System.

Preferred Qualifications

• Extensive experience as an Information Systems Security Officer on large software development and integration programs.
• DoD 8570 compliance with IAT Level II or higher.
• DoD 8570 compliance with IAM Level II or higher.