Isso 2

Job Description:

Duties/Responsibilities
Assist the ISSM in meeting their duties and responsibilities. The ISSO shall assume ISSM responsibilities in the absence of the ISSM.
Ensure systems are operated maintained and disposed of in accordance with security policies and procedures as outlined in the security authorization package.
Attend required technical and security training (e.g. operating system networking security management) relative to assigned duties.
Ensure all users have the requisite security clearances authorization needtoknow and are aware of their security responsibilities before granting access to the IS.
Conduct periodic reviews of information systems to ensure compliance with the security authorization package.
Coordinate any changes or modifications to hardware software or firmware of a system with the ISSM and AO/DAO prior to the change.
Formally notify the ISSM and AO/DAO when changes occur that might affect system authorization.
Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly.
Ensure all IS securityrelated documentation is current and accessible to properly authorized individuals.
Conduct Audits and Continuous Monitoring (ConMon) activities using available technical and nontechnical processes reports Audit and ConMon findings Execute incident response and attends and contributes to status meetings.
Manage configuration baselines of both hardware and software
Identify system architecture flaws using industry standard tools (e.g. STIG SCAP Nessus) that will be flowed to the ISSM for review.
Mentors and coaches ISSO 1.
Performs other duties as assigned.

Skills/Abilities
Fundamental understanding of common auditing techniques
Understanding of RMF (NIST SP 80053 JSIG DAAPM ICD 503) IR Vulnerability Management SCAP STIG and SecurityRelevant Tools.
Understands Information Technology basics.
Awareness of network type designations (e.g. WAN LAN) and associated infrastructure (e.g. Servers switches firewalls).

Education
Requires a bachelors degree in Information Technology or a related field.
Equivalent industry experience may be substituted.
Possesses an IAM I/IAT II Certification or greater.

Experience:
35 years year relevant industry experience is required
Preferred experience with auditing systems using native language (PS/BASH) with tools and basic scripts / queries and experience working with ISSMs to create and manage POA&Ms.

Additional Job Description:

Applicants selected for this position will be required to obtain and maintain a government security clearance.

Current in scope Top Secret security clearance is required.

Job Location State:

Job Location Postal Code: