Information Systems Security Officer (ISSO) - Springfield, VA;

Synertex is seeking a Information Systems Security Officer (ISSO) to support our Department of Defense customer based in Springfield, VA. The position requires you to be onsite.

Benefits include competitive PTO, 11 Paid Government Holidays, a 401k with 6% match, and a comprehensive list of health care options.

Clearance: TS/SCI with the ability to obtain and maintain a CI Polygraph

RESPONSIBILITIES:

• Provides Risk Management Framework (RMF) products that document the information system's adherence to the security controls applied. RMF products shall be delivered for information systems identified by the COR.
• Responsible for delivering annual Federal Information Security Modernization Act (FISMA) reports and metrics for information systems identified by the COR.
• The FISMA reporting requirements will be defined annually by the COR's CIO and will focus on reporting the adequacy and effectiveness of the information security policies, procedures, and practices of the enterprise.
• Ensures the appropriate operational security posture is maintained for specific information systems to include Wide Area Networks (WANs), Local Area Networks (LANs), Cross Domain Solutions (CDSs), and standalones;
• Developing and updating system security plans; managing and controlling changes to specific systems and assessing the security impact of those changes
• Incident handling; and development of information system security documentation, policies, and procedures.

REQUIREMENTS:

• Shall have 4 or more years of experience in Information Security (INFOSEC) operations and/or Cybersecurity-related support.
• Shall meet the Cyber IT/Cybersecurity Workforce (CSWF) Systems Security Analyst (461);
• Intermediate Level for SECNAV M-5239.2 compliance. (See Navy Cool WebSite).

DESIRED QUALIFIATIONS:

• 2 or more years of experience with the Risk Management Framework (RMF) within the Intelligence Community (IC), DoD, and/or Federal Systems community.
• 1 or more years of experience with using Security Information and Event Management (SIEM) products.
• 1 or more years of experience with using vulnerability scanning products.
• OS/CE certificate for Windows 10 and Windows Server 2012/2016 or newer.
• OS/CE certificate for Red Hat Enterprise Linux (RHEL).

EDUCATION:

• Associate's Degree from accredited University; or equivalent experience.

Certifications:

• Certified Authorization Professional (CAP); or CompTIA Advanced Security Practitioner (CASP+); or CompTIA Security+ ce; or Systems Security Certified Practitioner (SSCP).