Information System Security Officer

Job Summary

As an Information System Security Officer (ISSO), you will be challenged to stay current with the latest technological developments in information security. You will be exposed to advanced technologies, and will play a major role in identifying potential threats and intrusions on Information Technology (IT) systems by our adversaries. Together, well address evolving threats to national security, thus keeping our nation and our warfighter safe.

Successful candidates for this role will support the Information System Security Manager (ISSM) with obtaining and maintaining certifications and accreditations under the new Defense Counterintelligence Security Agency (DCSA) and Intelligence Community (IC) Risk Management Framework. If you are interested in information system security, competitive pay, and the opportunity to obtain industry professional certifications on the job, please apply now!

Job Responsibilities

Apply current computer science technologies to develop, evaluate and maintain system security for classified information systems

Responsible for performing various scans of information systems, including vulnerability, network detection and controlled interface scans. 

Knowledgeable of configuring and utilizing vulnerability scanning tools to create and interpret scan reports and recommend prioritized remediation plans.

 Ability to script and develop parsing tools.

Ability to create Splunk queries for in-depth system analysis

Authoring and maintaining documentation of assigned systems in accordance with the Risk Management Framework (RMF)

Performing security control assessments as part of the systems’ Continuous Monitoring Plan and annual self-assessments

Overseeing configuration management of assigned systems following DISA and NIST guidelines

Auditing systems to ensure security posture for confidentiality, integrity and availability

Identify and remediate system security controls deficiencies and develop POA&Ms

 Identify and document unique local threats and vulnerabilities to classified information system security using in-depth analysis tools.

Execute local policies, processes, and procedures to comply with all National Industrial Security Program (NISP), NISP eMASS instance and Defense Information Systems Agency (DISA) to ensure compliance with the National Industrial Security Program Operating Manual requirements 

Monitor and enforce access requirements to cleared information systems in support of classified contracts

Assist in the development and implementation of policies and operating procedures supporting government agency requirements

Deliver site information systems security education program requirements to all users of the classified information system(s) supporting classified programs

Ensure periodic self-assessments of the facility’s classified information systems are conducted as part of the overall facility self-inspection program and that all corrective actions are taken

Support, communicate, reinforce and defend the mission, values and culture of the organization

Research and develop new security concepts or standards which make significant and impactful improvements to processes and/or procedures designed to enhance the security posture of DRS independently, with a group or at the enterprise-level.

Any other duties as required

 

Required Qualifications

•     1-3 years of experience managing Linux/Solaris Operating Systems
•     1-3 years of experience managing Windows Operation Systems
•     must obtain Linux+ and Security+ certification within 6 months of employment (or equivalent)
•    1-3 years of experience in IT Helpdesk, IT Security, IT Risk/Compliance or Cybersecurity performing system maintenance & managing a server and Active Directory policies (GPOs) 
•    Strong knowledge of information systems security components and best practices including: firewalls, intrusion detection systems, anti-virus software, data encryption, and other industry-standard techniques and practices 
•    Excellent communication and interpersonal skills
•    A team-based mentality 
•    Exceptional attention to detail
•    Be a self-starter, able to work under pressure and with limited supervision, and work well with others in a large and diverse environment
•    Ability to successfully prioritize and manage to completion multiple complex tasks and deliverables, and demonstrate the highest degree of integrity and accountability in all actions
•    Must have a SECRET security clearance 

Desired Qualifications

•    Associate degree in Information System Security, Cybersecurity, IT, Computer Science, or a related field (additional years of experience may substitute for a related degree)
•    A strong knowledge and understanding of DCSA eMASS, DAAPM, NIST Special Publication 800-53, ISO27001, DoD 8510.01, NISPOM, & ICDs
•    Professional Security Certifications such as Linux RedHat Administrator, Linux RedHat Manager, Network+, A+, CISA,  CISSP, CISM, or CEH certifications are preferred 
•    Experience with Defense Counterintelligence Security Agency (DCSA)      accredited information systems 
•    Experience with the SCAP Compliance Checker and the DISA STIG Viewer 
•    Completion of the DCSA ISSM STEPP/CDSE Training Curriculum 
•    Strong leadership, presentation, and training skills
•    Previous COMSEC & FOCI experience are a plus