Our Client is looking for an Information System Security Officer/Information Assurance Technician to provide day-to-day system security operations to ensure that operational security is maintained for various Information Systems (ISs). Responsible to the Information System Security Manager (ISSM) for day-to-day system security operations. Maintain effective communications with the Program Security Officer (PSO), Authorizing Official (AO) or Delegated Authorizing Official (DAO), Information System Security Engineer (ISSE), and the Security Control Assessor (SCA). Determine IS long term needs and acquisition requirements to accomplish mission objectives. Develop and implement information security standards and procedures through the assessment and authorization process.
Provide support for a program, organization, system, or enclave’s information assurance program. Provide support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies. Evaluate security solutions to ensure they meet security requirements for processing classified information.
Provide configuration management (CM) for IS(s) security software, hardware, and firmware. Manage changes to system and assess the security impact of those changes. Prepare and review documentation to include System Security Plans, Risk Assessment Reports, Assessment and Authorization packages, and System Requirements Traceability Matrices.
Ensure a strong customer focus. Provide effective security measures in support of customer mission needs. Integrate the security disciplines to provide optimal information system security solutions and make the ISSO a key member of the team.
Possess a working knowledge of ICD 503 Information Technology Systems security Risk Management, Certification and Accreditation and DCID 6/3 Protecting Sensitive Compartmented Information within Information Systems. Possess a working knowledge of applicable IA-related NIST and CNSS documents and certification and accreditation process. Be able to categorize information systems, select/implement and assess security controls. Possess a functional level of understanding on how to perform a risk assessment. Be able to assess threat/vulnerability reports and recommended appropriate IA controls to mitigate. Be able to evaluate proposals to determine if proposed security solutions effectively address IS requirements. Ensure that security related provisions of the system acquisition documents meet all identify security needs, Monitor and evaluate the effectiveness of the services and safeguards to ensure that baseline security safeguards are appropriately installed.
Possess effective communication skills, self motivation/initiative and have sound judgment. Possess familiarity with system security principles and best practices. Possess a familiarity with controlling, labeling, virus scanning, and appropriately transferring data between information systems at varying classification levels.
Possess a working knowledge of configuration management; system maintenance; and integration testing. Proficient in the use of tools used to prevent and/or negate malicious code. Demonstrate proficiency with various computer operating systems and networking technologies. Possess an analytical ability to decipher complex technical configuration management documents. Have a thorough working knowledge of applicable IC, DOD policies, procedures relating to Information Technology, Information Assurance, Information Management (IT/IA/IM).
EXPERIENCE: These ISSO positions requires (0-11 years) in IT/IA/IM.
EDUCATION:High School/GED or Associate’s or Bachelor’s Degree. **Will look at years of experience in lieu of a certain degree**
CERTIFICATIONS: Candidate must possess a current DODI 8570.01 compliant certification.
CLEARANCE: TS/SCI, US Citizenship required.
|Job Category||Security Officer|