Information System Security Officer (ISSO) with Security Clearance
Summary The successful candidate will leverage their strong technical background/knowledge to support the Sponsor's system accreditation efforts, to include creating Body of Evidence (BOE) documentation, implementing required controls, and completed required tasks/actions.
Duties, Tasks & Responsibilities Creating, updating, maintaining, and interpreting required Body of Evidence (BOE) documentationWorking with management, internal teams, and Sponsor's authorities to successfully navigate the Sponsor's accreditation process for all systemsPerforming Nessus scans and interpreting the resultsMaintaining a robust library of documentation, to include network diagrams for cyber defense capabilities and sensors, and making documentation available to all personnel with appropriate need-to-knowMaintaining, updating, and conducting routine vulnerability scanning across all Sponsor networksMaintaining system baselines and configuration management items, including security event monitoring policiesWorking with all stakeholders to ensure complete and functioning systems that meet all requirementsEnsuring all network defense capabilities are kept current, patched, and securely configured, and the management is informed of statusAnalyzing data flows into, out of, and across Sponsor networks to identify and rectify any security gapsRecommending, and when approved, implementing process and policy improvementsRequired Experience, Skills, & Technologies Significant, demonstrated experience navigating the Sponsor's accreditation process and ICD 503 requirements, especially as it relates to creating Body of Evidence (BOE) documentationSignificant, demonstrated experience meeting security requirements in the Sponsor's environment or similar environments (prior ISSO experience)Experience performing Nessus scans and interpreting the resultsExperience working across a large team to drive a security agendaExperience working with complex, intertwined systems and data flowsExperience inventorying complex networks, and with all facets of network documentation (security compliance, configuration management, patching, centralized authentication, removable media, etc.
)Security-focused knowledge of a wide range of diverse technologies/disciplines (networking, UNIX/Linux, Windows, Storage, Virtualization, etc.
)Experience monitoring network defense technologies and analyzing the outputsExperience creating, maintaining, and communicating complex information technology documentation, particularly network and security documentationSelf-starter with excellent people skills - able to work across teams, organize meetings/boards, and drive change throughout an organizationDesired Experience, Skills & Technologies CISSP strongly desiredExperience with the Xacta 360 cyber risk and compliance automation tool strongly desired Recommended Skills Certified Information Systems Security Professional Communication Complex Networks Configuration Management Data Streaming Information Systems Estimated Salary: $20 to $28 per hour based on qualifications.
Duties, Tasks & Responsibilities Creating, updating, maintaining, and interpreting required Body of Evidence (BOE) documentationWorking with management, internal teams, and Sponsor's authorities to successfully navigate the Sponsor's accreditation process for all systemsPerforming Nessus scans and interpreting the resultsMaintaining a robust library of documentation, to include network diagrams for cyber defense capabilities and sensors, and making documentation available to all personnel with appropriate need-to-knowMaintaining, updating, and conducting routine vulnerability scanning across all Sponsor networksMaintaining system baselines and configuration management items, including security event monitoring policiesWorking with all stakeholders to ensure complete and functioning systems that meet all requirementsEnsuring all network defense capabilities are kept current, patched, and securely configured, and the management is informed of statusAnalyzing data flows into, out of, and across Sponsor networks to identify and rectify any security gapsRecommending, and when approved, implementing process and policy improvementsRequired Experience, Skills, & Technologies Significant, demonstrated experience navigating the Sponsor's accreditation process and ICD 503 requirements, especially as it relates to creating Body of Evidence (BOE) documentationSignificant, demonstrated experience meeting security requirements in the Sponsor's environment or similar environments (prior ISSO experience)Experience performing Nessus scans and interpreting the resultsExperience working across a large team to drive a security agendaExperience working with complex, intertwined systems and data flowsExperience inventorying complex networks, and with all facets of network documentation (security compliance, configuration management, patching, centralized authentication, removable media, etc.
)Security-focused knowledge of a wide range of diverse technologies/disciplines (networking, UNIX/Linux, Windows, Storage, Virtualization, etc.
)Experience monitoring network defense technologies and analyzing the outputsExperience creating, maintaining, and communicating complex information technology documentation, particularly network and security documentationSelf-starter with excellent people skills - able to work across teams, organize meetings/boards, and drive change throughout an organizationDesired Experience, Skills & Technologies CISSP strongly desiredExperience with the Xacta 360 cyber risk and compliance automation tool strongly desired Recommended Skills Certified Information Systems Security Professional Communication Complex Networks Configuration Management Data Streaming Information Systems Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
