Yesterday
Secret
Unspecified
Unspecified
IT - Security
Detroit Military Arsenal Base (On-Site/Office)
Description
The Information System Security Officer (ISSO) serves as the principal advisor to the Information System Owner (SO), Business Process Owner, and the Chief Information Security Officer (CISO) / Information System Security Manager (ISSM) on all matters, technical and otherwise, involving the security of an information system. ISSOs are responsible for ensuring the implementation and maintenance of security controls in accordance with the Security Plan (SP) and Department of Defense (DoD) policies. In almost all cases, ISSOs will be called on to provide guidance, oversight, and expertise, but they may or may not develop security documents or actually implement any security controls. While ISSOs will not actually perform all functions, they will have to coordinate, facilitate, or otherwise ensure certain activities are being performed. As a result, it is important for ISSOs to build relationships with the SO, technical staff, and other stakeholders.
Duties/Responsibilities:
Essentials
The goal of information security is to help the business process owner accomplish the mission in a secure manner. To be successful, ISSOs need to know and understand the following:
Requirements
Education/Certificates:
The Information System Security Officer (ISSO) serves as the principal advisor to the Information System Owner (SO), Business Process Owner, and the Chief Information Security Officer (CISO) / Information System Security Manager (ISSM) on all matters, technical and otherwise, involving the security of an information system. ISSOs are responsible for ensuring the implementation and maintenance of security controls in accordance with the Security Plan (SP) and Department of Defense (DoD) policies. In almost all cases, ISSOs will be called on to provide guidance, oversight, and expertise, but they may or may not develop security documents or actually implement any security controls. While ISSOs will not actually perform all functions, they will have to coordinate, facilitate, or otherwise ensure certain activities are being performed. As a result, it is important for ISSOs to build relationships with the SO, technical staff, and other stakeholders.
Duties/Responsibilities:
Essentials
The goal of information security is to help the business process owner accomplish the mission in a secure manner. To be successful, ISSOs need to know and understand the following:
- Coordinates with the ISO to ensure the appropriate operations security posture is maintained for the Information system
- Servers as principal advisor on all matters involving the security of an Information System
- Manage day-to-day security operations of the system
- Monitors information system and environment
- Manages and controls changes to the system
- Handles incidents
- Assists in the development of the: Security policies and procedures, Development and ongoing maintenance of the System Security Plan,
Security Impact Analysis, Mission, and business functions of the Information System, - System supports for the organization's mission - System details, including:
- Architecture
- System components (hardware, software, peripherals, etc.)
- Location of each system component
- Data flow Interconnections (internal and external) Security categorization, Security requirements, Configuration management processes and procedures
Requirements
Education/Certificates:
- Bachelor's degree in related field
- Certification: CompTIA Security + and Certified in Governance, Risk and Compliance (CGRC) formerly (CAP)
- Security Clearance: Secret.
- Detroit Military Arsenal Base
- Telework: Remote Hybrid.
group id: 10109450
