Information System Security Officer
Information System Security Officer
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
Summit Technologies Inc. is looking for a talented Information System Security Officer. In this role you will research develop implement test and review our clients information security to protect information and prevent unauthorized access. Candidates must have a TopSecret clearance and be able to obtain and maintain an SCI. This is a Hybrid position requiring working on site 2 days a week in Washington DC.
Duties & Responsibilities:
- Maintain the Security Authorization or Authorization to Operate (ATO) of assigned system(s).
- Conduct initial Security Assessment and obtain ATO in line with NIST SP 80037 Rev.2.
- Continuously update all Security Authorization documentation to maintain assigned systems ATO or system go live dates.
- Select the baseline security controls for the IT system using CSAM and tailor where appropriate.
- Document relevant NIST 80053 Security Controls for assigned IT systems.
- Perform and document initial and annual risk assessments of all systems.
- Develop and document all supporting Security Assessment & Authorization (A&A) artifacts (i.e. PIA SP ITCP BIA CMP MOU ISA).
- Produce Security Authorization packages for Authorizing Official (AO) signature including Authorization to Operate.
- Track the deployment of software to the environment that is not part of the base image.
- Conduct security impact analyses of proposed changes provide recommendations.
- Analyze configuration settings implementation of STIGs and conduct manual checklists.
- Generate Plan of Actions & Milestones (POA&Ms) for each noncompliant control of assigned IT Systems.
Required Skills & Experience:
- A minimum of 3 years experience working in Cybersecurity.
- Must have working knowledge and experience with CSAM XACTA eMASS and the NIST RMF.
- Experience working with system stakeholders to assess and manage system cybersecurity risks.
- 35 years of cybersecurity experience with DHS or from any of its subagencies.
- Ability to synthesize complex IT system information and communicate system status and requirements in written products and verbal presentations.
- Ability to write clear concise and effective security control implementation statements
- Familiarity with configuration settings and vulnerability management analysis of infrastructure devices.
- Ability to draft a complete ATO package to include the SSP.
- Ability to work independently.
Education:
- HS Diploma
Desired:
- BS in Computer Science Information Technology or related field
- CISSP CompTIA Security CGRC (formerly CAP) or CISM
Security Clearance:
- Top Secret.
If you feel you are qualified and want to be considered for this position please supply the following to: and please put the job number 6769 in the subject line:
- Updated resume including MM/YYYY for each employer.
- Best times/dates to interview (plus phone # you can best be contacted at).
- Availability to start once given formal offers.
Summit Technologies Inc. appreciates your interest. We will contact the best matching prospects and will consider you for future opportunities. We will not submit your resume without your prior knowledge and consent. We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race color religion gender sexual orientation gender identity national origin disability or veteran status.
Required Experience:
Unclear Seniority
Employment Type
Full Time
