Information System Security Officer (ISSO) (PL)

ASRC Federal is a leading government contractor furthering missions in space, public health and defense. As an Alaska Native owned corporation, our work helps secure an enduring future for our shareholders. Join our team and discover why we are a top veteran employer and Certified Great Place to Work™

ASRC Federal NetCentric Technology is seeking an Information System Security Officer (ISSO) to support one of our federal government clients. The successful candidate MUST possess an active Secret Security Clearance and will support all activities relating to information assurance procedures and systems. Confers with and advises other section leaders regarding administrative policies, internal controls, and security procedures, resolving technical problems, priorities, and methods. Prepares activity and progress reports relating to the information systems audit function. The position is hybrid but primarily remote with some onsite presence required from a minimum of 2-3 days per week in support of customer requirements at our main customer location in Alexandria, Virginia.

Responsibilities:

• Execute and maintenance of the DMDC Information Security Plan.
• Categorization and assignment of security controls in Enterprise Mission Assurance Support Service (eMass).
• Creation and maintenance of the A&A package in eMass.
• Coordination on inherited security controls within eMass.
• Management and update of DoD Information Technology Portfolio Repository entries.
• Ports, Protocols, & Services Management.
• Processes required to achieve and maintain all Authority to Operate (ATO) & Interim Authority to Test (IATT) approvals.
• Reporting on Federal Information Security Management Act (FISMA).
• Management and oversight for Security Technical Implementation Guide (STIG) / Information Assurance Vulnerability Alert (IAVA) compliance.
• Compliance and management of Security Incident Response Cyber Security Service Provider (CSSP).
• Scanning and compliance activities associated with Assured Compliance Assessment Solution (ACAS).
• Review and compliance activities associate with Continuous Monitoring and Risk Scoring / RMF.
• Support the Creation and Management of system profiles, plans and scorecards within eMass, as well as the creation and management of all artifacts tied to security controls within eMass.

Required Qualifications:

• This position requires the successful applicant to obtain and maintain a SECRET security clearance or other authorization(s) within the necessary timeframe required by applicable contract(s).
• Clearance:
• For candidates possessing a security clearance: An active Secret or above is required with the ability to obtain a Top Secret.
• For candidates not possessing a security clearance: Must be able to obtain an interim Secret clearance.
• Bachelor's Degree in Information Technology, Cybersecurity or a related field of study.
• Active DoD 8570 IAT Level II certification (Security+ CE, CISSP, etc.)
• 7 years Risk Management Framework and Information System Security Officer (ISSO) or Manager (ISSM)

• This is a hybrid but primarily remote with some onsite presence required from a minimum of 2-3 days per week in support of customer requirements at our main customer location in Alexandria, Virginia.
• Experience with DoD RMF, DIACAP or NIST Risk Management Framework (RMF).
• Experience with information assurance including accreditation and security testing as well as evaluation, implementation, and execution of security engineering practices in the Systems and Software Development Life Cycle (SDLC) process.
• Knowledge of several of the following areas is required: Understanding of business security practices and procedures; current security tools available; hardware/software security implementation; different communication protocols; encryption techniques/tools; familiarity with commercial products, and current lab infrastructure technology.
• Knowledge of Computer Network Defense (CND) policies, procedures, and regulations
• Knowledge of boundary protection and enclaving
• Knowledge of security tools and systems including ACAS, HBSS, Nessus, Splunk, etc.
• Ability to support Cybersecurity reviews, including generation of security artifacts, such as security plans, POA&M, and security CONOPS.

Why ASRC?

As a wholly owned subsidiary of Arctic Slope Regional Corporation, an Alaska Native Corporation, we are inspired by the Iñupiat culture. We embrace stewardship and the idea of using every resource effectively; teamwork when striving to achieve goals and building a collaborative environment; integrity in adhering to high moral principles and professional standards; respect in welcoming and regarding the differing opinions, experiences, rights and traditions of others; accountability in that we meet our commitments and take responsibility for our results; and continuous improvement, always striving to make things better, raising the bar and staying humble.

Advantages of Working at ASRC Federal:

• Purpose-Driven Careers: Join a company recognized as a:

• Certified Great Place to Work

• Military Times' Best for Vets Employer

• Military.com's Top 25 Veteran Employer

• Comprehensive Benefits:

• Insurance Coverage: Comprehensive plans for medical, dental, vision, life insurance, and short-term/long-term disability

• Paid Leave: Inclusive policies for bereavement, military obligations, and parental needs, along with 11 paid holidays annually

• Retirement Savings: A 401(k) plan with a generous company match and immediate vesting to help secure your financial future

• Incentives: Employee referral bonuses to reward you for helping grow the ASRC Federal Family

• Learning and Development:

• After 90 days of employment, regular full-time employees are eligible for our professional development program. This includes annual funding for:

• Pursuing Associate's, Bachelor's, or Graduate Degrees

• Obtaining industry-standard professional certifications

• Participating in professional certificate programs

• Covering registration fees for professional conferences

• Centers of Excellence : We established the Centers of Excellence to build, leverage and grow our technological capabilities, best practices and offer professional development for our technical teams. They contain many Communities of Practice which are forums that offer a platform to share ideas, best practices, innovations, and to collaborate with technical peers.

Embark on a career with ASRC Federal, where your growth, purpose, and well-being are at the forefront of what we do!

We invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefits packages. Benefits offered may include health care, dental, vision, life insurance; 401(k); education assistance; paid time off including PTO, holidays, and any other paid leave required by law.

EEO Statement

ASRC Federal and its Subsidiaries are Equal Opportunity employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.