Information System Security Officer (ISSO)

Columbia, IN - USA

Monthly Salary: Not Disclosed

Posted on: 10 hours ago

Vacancies: 1 Vacancy

Job Summary

ApplyLogic is a fast-paced Service-Disabled Veteran-Owned Small-Business headquartered in Vienna VA. Our people are our greatest asset and our company culture is grounded on that belief. We offer challenging and interesting work in a friendly and supportive environment. Through prime and subcontracts we deliver best-in-class expertise to solve complex technical problems.

Were looking for a talented Information System Security Officer (ISSO) to join our team. This position will support a complex government client and will serve as the principal security advisor to the Information System Owner (ISO) and Information System Security Manager (ISSM).The ISSO is responsible for overseeing and maintaining the security posture of assigned information systems ensuring compliance with NIST 800-53 controls EOUSA policies and other applicable federal security requirements.

Work Location:
Onsite Work can be performed from either location:

Columbia SC
Washington DC

Clearance:
Must be US citizen with the ability to obtain a government issued security clearance.

Primary Roles and Responsibilities:

Serve as the primary security advisor to the ISO and ISSM on all technical and non-technical information system security matters.
Ensure implementation documentation and ongoing maintenance of security controls in accordance with NIST SP 800-53 and EOUSA policies.
Prepare review update and manage system authorization packages within Cyber Security Assessment and Management (CSAM).
Conduct continuous monitoring activities for agency systems including internal systems and FedRAMP-authorized systems.
Perform and document system security procedures control implementation statements and system security documentation.
Conduct annual self-assessments of security controls and support authorization and assessment activities.
Develop review and track Plans of Action and Milestones (POA&Ms).
Review audit logs vulnerability scans and remediation activities in accordance with NIST requirements.
Conduct Security Impact Analyses (SIA) risk assessments risk-based acceptance documentation and STIG reviews when system changes occur.
Coordinate all security-related changes or modifications to system hardware software or firmware with Project Managers Security Officers and System Owners prior to implementation.
Support patch management vulnerability management auditing and assessment activities as required.
Provide security assessment and authorization (A&A) support throughout the system lifecycle.

Required Knowledge and Experience:

Bachelors degree in Computer Science Information Technology Business or a related discipline
OR eight (8) years of relevant professional experience may be substituted in lieu of a degree.
Demonstrated experience working with NIST SP 800-53 and federal information security frameworks.
Experience preparing and maintaining system authorization packages (ATO) within CSAM or similar GRC tools.
Experience with continuous monitoring vulnerability management and POA&M tracking.
Strong understanding of federal risk management and compliance processes including RMF.

Preferred Education Experience & Skills:

Experience supporting EOUSA or other federal law enforcement or justice systems.
Familiarity with FedRAMP requirements and cloud security controls.
Knowledge of DISA STIGs and security configuration baselines.
Relevant certifications (e.g. CISSP CISM Security CAP) are a plus.

The Perks of Being on Our Team
ApplyLogic offers competitive salaries with a robust Fortune-500 type benefits package. Some of the benefits you will receive when you join us are:

Employee Assistance Program
401K
Medical/Dental/Vision Insurance
Life/Short-Term Disability/Critical Illness/Accident Insurance
15 PTO Days
11 Federal Holidays
Up to $5K towards continuing education and/or professional development

Required Experience:

Unclear Seniority

Columbia SC
Washington DC

Clearance:
Must be US citizen with the ability to obtain a government issued security clearance.

Primary Roles and Responsibilities:

Serve as the primary security advisor to the ISO and ISSM on all technical and non-technical information system security matters.
Ensure implementation documentation and ongoing maintenance of security controls in accordance with NIST SP 800-53 and EOUSA policies.
Prepare review update and manage system authorization packages within Cyber Security Assessment and Management (CSAM).
Conduct continuous monitoring activities for agency systems including internal systems and FedRAMP-authorized systems.
Perform and document system security procedures control implementation statements and system security documentation.
Conduct annual self-assessments of security controls and support authorization and assessment activities.
Develop review and track Plans of Action and Milestones (POA&Ms).
Review audit logs vulnerability scans and remediation activities in accordance with NIST requirements.
Conduct Security Impact Analyses (SIA) risk assessments risk-based acceptance documentation and STIG reviews when system changes occur.
Coordinate all security-related changes or modifications to system hardware software or firmware with Project Managers Security Officers and System Owners prior to implementation.
Support patch management vulnerability management auditing and assessment activities as required.
Provide security assessment and authorization (A&A) support throughout the system lifecycle.

Required Knowledge and Experience:

Bachelors degree in Computer Science Information Technology Business or a related discipline
OR eight (8) years of relevant professional experience may be substituted in lieu of a degree.
Demonstrated experience working with NIST SP 800-53 and federal information security frameworks.
Experience preparing and maintaining system authorization packages (ATO) within CSAM or similar GRC tools.
Experience with continuous monitoring vulnerability management and POA&M tracking.
Strong understanding of federal risk management and compliance processes including RMF.

Preferred Education Experience & Skills:

Experience supporting EOUSA or other federal law enforcement or justice systems.
Familiarity with FedRAMP requirements and cloud security controls.
Knowledge of DISA STIGs and security configuration baselines.
Relevant certifications (e.g. CISSP CISM Security CAP) are a plus.

The Perks of Being on Our Team
ApplyLogic offers competitive salaries with a robust Fortune-500 type benefits package. Some of the benefits you will receive when you join us are: