As a Top Secret cleared Information Systems Security Officer you will be working in an organization that’s mission is to develop and operate the best possible software for critical national security enterprise applications. This organization leverages SCRUM and SAFE Agile software development methodology and strong Dev Ops practices.

You will be responsible for technical information assurance engineering efforts with network/server scanning, patching, mitigation, and compliance cross-checking of target network assets. Experience in ST&E process and POAM generation. You will need a strong understanding of approved COTS security analyst tools and government mitigation/compliance checkers. You will need a strong comprehension of FISMA, DIACAP, NIST-800 SPs and DCID 6/3 standards and policy control grouping. You will need experience determining products to meet client needs and presenting results.

This position will be contingent upon award to support on-site in Washington, DC at the customer facility.

Responsibilities

Serves as the principal advisor to the Information System Owner (SO), Business Process Owner, and the Chief Information Security Officer (CISO) / Information System Security Manager (ISSM) on all matters, technical and otherwise, involving the security of an information system. ISSOs are responsible for ensuring the implementation and maintenance of security controls. Directs and implements the necessary controls and procedures to cost-effectively protect information systems assets from intentional or inadvertent modification, disclosure, or destruction. Provides guidance and direction for the physical protection of information systems assets to other functional units. Provides reports to superiors regarding effectiveness of data security and makes recommendations for the adoption of new procedures. Assist with reviewing, developing, and navigating the system, team, and customer through the Authority to Operate (ATO) accreditation/certification documentation process. Perform network self-inspections. Create new and edit existing documentation that forms the Authority to Operate (ATO) package to include the System Security Plan and IS contingency plan. Develop Plan of Action and Milestone (POAMS) from vulnerability data and enter into the system of record.

Possesses and applies expertise on multiple complex work assignments. Assignments may be broad in nature, requiring originality and innovation in determining how to accomplish tasks. Operates with appreciable latitude in developing methodology and presenting solutions to problems. Contributes to deliverables and performance metrics where applicable.

Requirements:

• Active Top Secret clearance with SCI eligibility
• Minimum 2 years of technical experience installing, maintaining, and managing Local Area Networks (LANs) or Wide Area Networks (WAN)
• Certifications (at least one is desirable): MCP, CompTIA-Network +, CompTIA-Security +
• Education: Bachelor’s Degree in Information Systems, Security, Engineering, or other related scientific or technical discipline
  
  
  • In absence of degree, additional years of experience may be substituted for educational requirements"

Preferred:

• Front-end:
  
  
  • Code quality and standardization practices
• Development Tools:
  
  
  • Git source version control
  • Azure DevOps project management
• Business Analysis and Project Management:
  
  
  • Agile Principles
  • Azure DevOps

#javelin