Job Details
Information System Security Officer **Information System Security Officer** Apply **Job Description:**
ProSync is looking for an Information System Security Officer to provide support for the program, system, and enclave's information assurance program. The ISSO will provide support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies and maintain operations security posture.
**Requirements**:
* Requires the ability to provide Configuration Management.
* Requires the ability to prepare and review SSP's, C&A packages, and SRTMs.
* Requires and understanding of NISCAP and DoD RMF.
* Experience in interfacing with information assurance managers, including reviewing documentation, including systems security plans (SSPs), risk assessment reports, accreditation packages, and Plan of Actions and Milestones (POA&Ms).
* Experience working with the XACTA IA Manager.
* Knowledge of systems and network security, auditing, and user authentication.
* Solid understanding and experience with the Risk Management Framework.
* Experience with national security information system related security requirements (e.g. JSIG, ICD 503, RMF, DAAPM or NISPOM) to include technical computer/network system auditing.
* Experience in the oversight and execution of the Assessment & Authorization processes (a.k.a. Certification & Accreditation). - DoD 8570 compliant certification, including IAM Level I or greater (Security+; CISSP; CISM; CASP; CSSLP, etc).
* Experience creating and presenting documentation and management reports.
* Have worked in the role of an ISSO/ISSE or ISSM.
* Experience with Enterprise Linux based operating systems.
* Knowledge for networking principles (i.e firewall implementations, configuration, networking monitoring and associated protocols).
* Experience with USG STE/STN requirements.
* Expertise in Microsoft Office Suite (MS Word, PowerPoint, Excel, Project).
* Experience developing system security plans (SSP)s and associated artifacts (e.g. POAMs, etc.), obtaining authorizations to operate (ATOs). -
* Experience conducting system/network audits, and remediating cyber-incidents.
* A working knowledge of the security authorization processes and procedures as defined in the Risk Management Framework NIST SP800-37. - Familiarity with the ICD503, CNSSI1253, NIST SP800-53, etc.
* Knowledge of HBSS, ACAS, and DoD monitoring tools. Requires experience in at least two of the following
* Knowledge of current security tools - Hardware/ software security implementation - Communication Protocols - Encryption techniques/ tools * Must be able to work between 0700-1700
**Responsibilities:**
* Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed.
* Assists with the management of security aspects of the information system and performs day-to-day security operations of the system.
* Evaluate security solutions to ensure they meet security requirements for processing classified information.
* Performs vulnerability/risk assessment analysis to support certification and accreditation.
* Provides configuration management (CM) for information system security software, hardware, and firmware.
* Manages changes to system and assesses the security impact of those changes.
* Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
* Supports security authorization activities in compliance with NSA/CSS Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF). Area of Responsibility: National Security Systems/ Defense Industrial Base
**Education:**
* Requires a Bachelors degree in computer science or related discipline
* Requires ten years of experience as an ISSO on programs and contracts of similar scope, type, and complexity.
* Requires DoD 8570 IAM Level 1 or higher
**About Prosync Technology:**
* ProSync Technology is a leader in the Intelligence Community built on a community of talented and committed individuals. With a heritage built on supporting National Security and telecommunications industry we deliver solutions in Hardware Engineering, Intelligence Analysis, Cyber Defense, Research and Software Development. Our executive team creates and expands business opportunities, recruits talented and intelligent technology professionals, and fosters a company culture that empowers ProSync professionals to shape and mold the direction of their careers and the direction of ProSync. Employees of ProSync Technology Group, LLC and applicants for employment shall be afforded equal opportunity in all aspects of employment without regard to race, color, religion, political affiliation, national origin, disability, sex, age, or marital status. Email ...@prosync.com for more specifics regarding the position.
**Contract Requisition & LCAT:**
* Rec # 220 TTO 208
* LCAT: ISSO-2
Description First Name Last Name Phone Toggle Int'l Email Resume Upload File By submitting this form, you agree to HireVise's and . Thank you for your application.