Description
Maintain the operational security posture for assigned information systems or programs, ensuring adherence to established information systems security policies, standards, and procedures.
Assist in managing the security aspects of information systems and perform day-to-day security operations.
Evaluate security solutions to ensure compliance with security requirements for processing classified information.
Conduct vulnerability and risk assessment analysis to support certification and accreditation processes.
Provide configuration management (CM) for information system security software, hardware, and firmware.
Manage system changes and assess their security impact.
Prepare and review security documentation, including System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
Support security authorization activities in compliance with the National Institute of Standards and Technology Risk Management Framework (NIST RMF).
Work Experience
Develop and maintain Certification & Accreditation (C&A) documentation, including System Security Plans (SSPs) and other Information Assurance (IA) documentation, in accordance with ODNI and DoD policies.
Evaluate security solutions to ensure compliance with security requirements for processing classified information.
Provide Configuration Management (CM) for security-relevant information system software, hardware, and firmware.
Maintain detailed records of information systems components, including workstations, servers, routers, firewalls, intelligent hubs, and network switches, incorporating system upgrade details.
Maintain the operational security posture for assigned information systems or programs.
Manage security aspects of information systems and perform day-to-day security operations.
Support the Information System Security Manager (ISSM) in maintaining the appropriate operational Information Assurance (IA) posture for systems, programs, or enclaves.
Administer user identification and authentication mechanisms for information systems.
Specialty Experience
None required
Relevant Experience
Five (5) years of experience as an ISSO on programs and contracts of similar scope, type, and complexity is required
Experience is to include at least one (1) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools
Education
Bachelor's degree in Computer Science or related discipline from an accredited college or university is required
DoD 8570 compliance with IASAE Level 2 is required
Four (4) years of ISSO experience may be substituted for a bachelor's degree
Marquee Defense is an equal opportunity employer (EEO)
All applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.