Today
Top Secret/SCI
Mid Level Career (5+ yrs experience)
No Traveling
IT - Security
Wash, DC (On-Site/Office)
Position: ISSO
Location: Pentagon
Duration: Long Term Contract
Clearance: TS/SCI Clearance
Pay Rate: $75.00-$85.00/hr
Certification: 8570 baseline certification for IAT II (one of the following: GSEC, Security+, SCNP and SSCP certifications)
Primary Responsibilities
· Must be able to work in a constantly changing regulatory environment with short, mid, and long term timelines for remediating any non-compliance
· Must be able to work well within a team environment and able to adapt quickly to change
· Identify key stakeholders in A&A efforts and ensure system documentation reflects current system security configurations to include hardware and software components, data flow, interconnections, and ports, protocols, and services, etc.
· Maintain cybersecurity procedures and processes as assigned
· Able to analyze, interpret, and apply Federal cybersecurity guidance to customer needs
· Communicate the security posture of systems through designated reporting mechanism
· Assist in preparation and review documentation to include System Security Plans (SSPs), Risk Assessment Reports (RAR), and other Assessment & Authorization (A&A) artifacts
· Assist in the research and address information security issues as required, and develop and maintain the Plan of Action and Milestones (POA&M) and support remediation activities
· Develop and advise development of Assessment and Authorization (A&A) artifacts and security documentation to include, but not limited to System Security Plans (SSP), Plan of Action and Milestone (POAM), Contingency Plan, Incident Response Plan, Configuration Management Plan
· Assist with pre-assessment preparation
· Perform Risk Management Framework (RMF) activities to achieve Authority to Operate (ATO).
· Perform continuous monitoring of security controls to ensure that they are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the cybersecurity requirements for assigned IT systems.
· Advise system owners on all matters, technical and otherwise, involving the security of assigned IT systems.
· Strong verbal and written skills required providing management status reports and document system changes.
· Analyze problems and provide focused solutions to effectively communicate information to various audiences verbally and through written communications.
Required Skills:
· 3-5 years of Cyber Security experience
· 2 Years of IT experience (Networking/System Administration)
· Bachelor Degree or equivalent work experience and certifications
· Familiarity with SIPRNet environment
· Conduct thorough reviews of all vulnerabilities, architecture, and defense in depth strategies and report findings in POA&Ms document to Lead
· Past or current ISSM/ISSO experience
· Familiar with NIST publications, specifically RMF and NIST controls
· Experience developing A&A documentation from scratch and performing assessments; RMF step 1 through 4
Location: Pentagon
Duration: Long Term Contract
Clearance: TS/SCI Clearance
Pay Rate: $75.00-$85.00/hr
Certification: 8570 baseline certification for IAT II (one of the following: GSEC, Security+, SCNP and SSCP certifications)
Primary Responsibilities
· Must be able to work in a constantly changing regulatory environment with short, mid, and long term timelines for remediating any non-compliance
· Must be able to work well within a team environment and able to adapt quickly to change
· Identify key stakeholders in A&A efforts and ensure system documentation reflects current system security configurations to include hardware and software components, data flow, interconnections, and ports, protocols, and services, etc.
· Maintain cybersecurity procedures and processes as assigned
· Able to analyze, interpret, and apply Federal cybersecurity guidance to customer needs
· Communicate the security posture of systems through designated reporting mechanism
· Assist in preparation and review documentation to include System Security Plans (SSPs), Risk Assessment Reports (RAR), and other Assessment & Authorization (A&A) artifacts
· Assist in the research and address information security issues as required, and develop and maintain the Plan of Action and Milestones (POA&M) and support remediation activities
· Develop and advise development of Assessment and Authorization (A&A) artifacts and security documentation to include, but not limited to System Security Plans (SSP), Plan of Action and Milestone (POAM), Contingency Plan, Incident Response Plan, Configuration Management Plan
· Assist with pre-assessment preparation
· Perform Risk Management Framework (RMF) activities to achieve Authority to Operate (ATO).
· Perform continuous monitoring of security controls to ensure that they are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the cybersecurity requirements for assigned IT systems.
· Advise system owners on all matters, technical and otherwise, involving the security of assigned IT systems.
· Strong verbal and written skills required providing management status reports and document system changes.
· Analyze problems and provide focused solutions to effectively communicate information to various audiences verbally and through written communications.
Required Skills:
· 3-5 years of Cyber Security experience
· 2 Years of IT experience (Networking/System Administration)
· Bachelor Degree or equivalent work experience and certifications
· Familiarity with SIPRNet environment
· Conduct thorough reviews of all vulnerabilities, architecture, and defense in depth strategies and report findings in POA&Ms document to Lead
· Past or current ISSM/ISSO experience
· Familiar with NIST publications, specifically RMF and NIST controls
· Experience developing A&A documentation from scratch and performing assessments; RMF step 1 through 4
group id: apexsan
