Description
Maintain the operational security posture for assigned information systems or programs, ensuring adherence to established information systems security policies, standards, and procedures.
Assist in managing the security aspects of information systems and perform day-to-day security operations.
Evaluate security solutions to ensure compliance with security requirements for processing classified information.
Conduct vulnerability and risk assessment analysis to support certification and accreditation processes.
Provide configuration management (CM) for information system security software, hardware, and firmware.
Manage system changes and assess their security impact.
Prepare and review security documentation, including System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
Support security authorization activities in compliance with the National Institute of Standards and Technology Risk Management Framework (NIST RMF).
Work Experience
Plan and coordinate IT security programs and policies.
Support senior Information System Security Officers (ISSOs) in implementing and enforcing security policies, standards, and methodologies.
Develop and maintain Authorization & Accreditation (A&A) documentation, including System Security Plans (SSPs) and other Information Assurance (IA) documentation, in accordance with ODNI and DoD policies.
Obtain Authorization & Accreditation (A&A) for information systems under their purview.
Evaluate security solutions to ensure they meet security requirements for processing classified information.
Maintain the operational security posture for assigned information systems or programs.
Support the Information System Security Manager (ISSM) in maintaining the appropriate operational Information Assurance (IA) posture for systems, programs, or enclaves.
Manage the security aspects of information systems and perform day-to-day security operations.
Administer user identification and authentication mechanisms for information systems.
Provide Configuration Management (CM) for security-relevant information system software, hardware, and firmware.
Maintain comprehensive records of information system components (e.g., workstations, servers, routers, firewalls, network switches), including system upgrades.
Manage and control changes to information systems, including assessing the security impact of those changes.
Provide comprehensive support for the organization's Information Assurance (IA) program.
Serve as the Approval Authority for information systems under their control.
Specialty Experience
None required
Relevant Experience
Ten (10) years of experience as an ISSO on programs and contracts of similar scope, type, and complexity is required
Experience is to include at least two (2) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools
Education
Bachelor's degree in Computer Science or related discipline from an accredited college or university is required
DoD 8570 compliance with IASAE Level 2 is required
Four (4) years of ISSO experience may be substituted for a bachelor's degree
Marquee Defense is an equal opportunity employer (EEO)
All applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.