ISSO

Role:

Information Systems Security Officer (ISSO)

Location:

Fairfax VA

Minimum Clearance:

Active TS//SCI with CI Poly

Summary:

Client is seeking a highly motivated ISSO to support the Fairfax facility. The role will assist the ISSM/ISSO to ensure compliance with IC and DoD security guidelines/directives and provide special project support to the Security Team.

Job Description / Responsibilities:

• Perform assessments of systems/networks to identify deviations from acceptable configurations policies or standards via compliance audits and vulnerability assessments.

• Develop and maintain documentation in support of RMF processes operating procedures and policies.

• Create and manage POAMs in response to reported security vulnerabilities.

• Perform Information Assurance (IA) activities within cleared environments to meet client timelines.

• Conduct Continuous Monitoring (ConMon) per NIST SP 800-137 including auditing for anomalous/malicious activity.

• Establish strict program control processes to mitigate risks and support system certification and accreditation.

• Provide process analysis coordination test documentation and inspection support for emerging technologies.

• Perform periodic audit reviews track corrective actions and manage closure of issues.

• Manage media handling labeling scanning and cross-domain data transfers (manual and automated).

Basic Qualifications:

• TS/SCI clearance with CI Poly.

• DoD 8570 IAM Level I certification.

• Experience with:

  • Security tools hardware/software security implementation.

  • Communication protocols.

  • Encryption techniques/tools.

Required Skills & Experience:

• Knowledge of ICD 503 NIST SP 800-37 CNSS publications and other RMF processes.

• Experience with scan tools and systems: STIG SCAP EVSS Security Center Nessus NMAP.

• Strong analytical/problem-solving skills to address evolving client situations.

• Ability to incorporate new knowledge seamlessly in client interactions.

• Experience working with development teams to integrate security practices from requirements phase onward.

• Relevant security certifications (Security CISSP etc.) or ability to obtain within 6 months of hire.

Desired Skills & Experience:

• Nessus scanning STIG/SCAP compliance.

• Splunk (including Security Essentials).

• eMASS and ServiceNow.

• Linux/Unix operating systems.

• Conducting ISAP inspections.

• Experience configuring/securing Windows systems.

• IC customers ServiceNow and DoD eMASS.

• AWS or other cloud technologies.

• Strong writing skills (executive and technical audiences).

Education & Experience:

• Bachelors Degree in Computer Science Information Technology or related field (or equivalent experience).