Overview
Skills
Job Details
The Information System Security Officer (ISSO) will be responsible for aiding in drafting, updating, and maintaining documents, templates, and systems to support compliance with the NIST Risk Management Framework (RMF) and CNSSI 1253, as well as other relevant programs. Additionally, the ISSO will assist OIT ISSOs in supporting and maintaining XACTA 360 and XACTA IO GRC tools. The contractor will conduct independent assessments of System Security Plans (SSPs) to ensure that they meet all applicable security requirements, and will develop Security Assessment Plans (SAPs) in accordance with NIST SP 800-53Aif applicable.
Key Responsibilities:
1. Aid in drafting, updating, and maintaining documents, templates, and systems to support compliance with NIST RMF, CNSSI 1253, and other relevant programs.
2. Assist OIT ISSOs in supporting and maintaining XACTA 360 and XACTA IO GRC tools.
3. Conduct independent assessments of System Security Plans (SSPs) to ensure compliance with applicable security requirements.
4. Develop Security Assessment Plans (SAPs) that describe the scope of system assessments.
5. Collaborate with internal teams to identify and address security risks and vulnerabilities.
6. Provide recommendations for mitigating identified security risks.
7. Stay current with industry best practices, regulations, and guidelines related to information security.
Qualifications:
Bachelor's degree in Information Technology, Computer Science, or a related field.
Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA) preferred.
Experience with NIST Risk Management Framework (RMF) and CNSSI 1253.
Proficiency in using XACTA 360 and XACTA IO GRC tools.
Strong understanding of security controls and compliance frameworks.
Experience conducting security assessments and developing Security Assessment Plans (SAPs).
Excellent communication and collaboration skills.
Ability to work independently and as part of a team.
Attention to detail and strong analytical skills.
Delviom LLC is a pioneering woman-owned cyber security solutions provider renowned for its commitment to safeguarding client organizations against cyber threats and championing diversity in the technology sector. With a primary focus on federal and commercial clients, Delviom excels in protecting critical assets, infrastructure, and applications. As an ISO 9001:2015, ISO 27001:2013, ISO 20000-1:2011 certified company and CMMI-SVC level 3 appraised IT services and solutions provider, Delviom offers unparalleled expertise in Cyber Security, Business Intelligence, and IT Staff Augmentation.
Our exceptional track record stems from our dedication to excellence and innovation, which has earned us recognition as the recipient of prestigious awards such as Best Place to Work 2023, Fortune Best Small Workplace 2023, Washington Business Journal Fastest Growing Companies 2023, and Washington Business Journal Best Place to Work 2024.
At Delviom, we pride ourselves on providing a supportive and rewarding work environment, as evidenced by our accolades and competitive benefits package. In addition to our commitment to diversity and inclusion, Delviom offers a comprehensive benefits package that includes medical, dental, orthodontia, and vision coverage. At Delviom, we prioritize the financial security and long-term prosperity of our team members, ensuring they have access to valuable benefits that complement their professional growth and personal well-being. We are not only dedicated to providing exceptional cyber security solutions but also to fostering an inclusive workplace culture where all individuals can thrive and contribute to our mission of securing a safer digital future.