Jan 23
Dept of Homeland Security
Senior Level Career (10+ yrs experience)
IT - Security
Arlington, VA (On-Site/Office)
This role is 5 days per week onsite in Arlington, VA.
Duties & Responsibilities:
The Information System Security Officer serves as the primary cybersecurity point of contact for work performed under the contract possessing an in-depth knowledge of federal information system security policy, industry best practices, security control assessments, Plan of Action and Milestones (POA&M) management, system authorizations, configuration management, and system analysis. Functions as the highest-level individual contributor in this area; has a high level of diverse technical and industry experience Acts as a recognized technical expert providing technical support in the areas of vulnerability assessment, risk assessment, network security, product evaluation, and security implementation.
From a technical perspective, the ISSO is responsible for designing and implementing solutions for protecting the confidentiality, integrity, and availability of sensitive information. Provides technical evaluations of customer systems and assists with making security improvements. Participates in design of information system contingency plans that maintain appropriate levels of protection and meet time requirements for minimizing operations impact to customer organization. Conducts security product evaluations, and recommends products, technologies, and upgrades to improve the customer’s security posture.
Requirements:
8+ years of federal information systems security experience to include support for both financial and information security external audits.
BS in related field.
Minimum of two (2) years of FISMA experience
One or more of the following certifications: CISM, CISSO, FITSP-M, GCIA, GCSA, GCIH, GSLC, GICSP, CISSP-ISSMP or CISSP
Technical Skills:
Demonstrated experience with RMF and applying the NIST Cybersecurity Framework.
In-depth knowledge of federal information system security policy, industry best practices, security control assessments, Plan of Action and Milestones (POA&M) management, system authorizations, configuration management, and system analysis
Experience designing and implementing solutions for protecting the confidentiality, integrity, and availability of sensitive information.
Expert providing technical support in the areas of vulnerability assessment, risk assessment, network security, product evaluation, and security implementation.
Experience designing and implementing solutions for protecting the confidentiality, integrity, and availability of sensitive information.
Experience using CSAM.
Solid understanding and application of NIST Special Publications including SP 800-53, SP 800-137, SP 800-171, and SP 800-37.
Solid understanding of FISMA and IT audit requirements.
Ability to work with cooperatively and at a technical level with developers, engineers, and managers on system teams.
Knowledge of current and past cybersecurity threats and vulnerabilities.
Duties & Responsibilities:
The Information System Security Officer serves as the primary cybersecurity point of contact for work performed under the contract possessing an in-depth knowledge of federal information system security policy, industry best practices, security control assessments, Plan of Action and Milestones (POA&M) management, system authorizations, configuration management, and system analysis. Functions as the highest-level individual contributor in this area; has a high level of diverse technical and industry experience Acts as a recognized technical expert providing technical support in the areas of vulnerability assessment, risk assessment, network security, product evaluation, and security implementation.
From a technical perspective, the ISSO is responsible for designing and implementing solutions for protecting the confidentiality, integrity, and availability of sensitive information. Provides technical evaluations of customer systems and assists with making security improvements. Participates in design of information system contingency plans that maintain appropriate levels of protection and meet time requirements for minimizing operations impact to customer organization. Conducts security product evaluations, and recommends products, technologies, and upgrades to improve the customer’s security posture.
Requirements:
8+ years of federal information systems security experience to include support for both financial and information security external audits.
BS in related field.
Minimum of two (2) years of FISMA experience
One or more of the following certifications: CISM, CISSO, FITSP-M, GCIA, GCSA, GCIH, GSLC, GICSP, CISSP-ISSMP or CISSP
Technical Skills:
Demonstrated experience with RMF and applying the NIST Cybersecurity Framework.
In-depth knowledge of federal information system security policy, industry best practices, security control assessments, Plan of Action and Milestones (POA&M) management, system authorizations, configuration management, and system analysis
Experience designing and implementing solutions for protecting the confidentiality, integrity, and availability of sensitive information.
Expert providing technical support in the areas of vulnerability assessment, risk assessment, network security, product evaluation, and security implementation.
Experience designing and implementing solutions for protecting the confidentiality, integrity, and availability of sensitive information.
Experience using CSAM.
Solid understanding and application of NIST Special Publications including SP 800-53, SP 800-137, SP 800-171, and SP 800-37.
Solid understanding of FISMA and IT audit requirements.
Ability to work with cooperatively and at a technical level with developers, engineers, and managers on system teams.
Knowledge of current and past cybersecurity threats and vulnerabilities.
group id: 90994518
