Senior Information Systems Security Officer - Isso

Senior Information Systems Security Officer – Isso

Typically requires a University Degree or equivalent experience and minimum 5 years prior relevant experience, or an Advanced Degree in a related field and minimum 3 years’ experience.
Current IAM Level I certification (Security+ or other).
Relevant Experience Considered in any combination: Cybersecurity, systems security or hardening, Information Technology, Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM), and/or non-defense regulations such as FAA, Payment Card Industry (PCI), ISO 9001 Quality Management standards, or HIPPA, Experience working with and/or supporting computer technologies (such as: databases, operating systems, computer network hardware, software programs, hardware troubleshooting or electronics), Physical security/security, policework/criminal justice, investigations, or Border Patrol, Project or program management, office management, senior administration, or account management.
Active and transferable U.S. government issued Secret security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.

Assessing and monitoring system compliance, auditing, security plan development and delivering information systems security education and awareness.
Investigating information system security violations and help prepare reports specifying corrective and preventative actions.
Reviewing and approving (within authority) configuration management requests.
Conducting technical and administrative assessments.
Integrating new cybersecurity processes, procedures, and tools.
Support the creation, review and update of cybersecurity documentation and other technical writing.

Experience working in DoD classified operating and/or laboratory environments.
Experience with various information system security tools that address vulnerability analysis and mitigation. These may include Splunk, Forcepoint, Ivanti, Tenable, ACAS, HBSS, etc.
Familiarity with implementation of Government directives and policies derived from NIST, CNSSI, DoD, or other Government Regulatory compliance standards within a professional industry.
Experience in the execution of the Assessment & Authorization processes, as defined within the Risk Managed Framework (RMF).
Experience providing technical security consultation for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers, Information Technology (IT).
Familiarity with large multi-facility networks including various complex components, including Windows and Linux environments.
Experience interpreting, implementing, and assessing DISA STIGs.
Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication.