Information Systems Security Officer II

• Location: Columbia, Maryland
• Type: Contract
• Job #4013

Position: Information Systems Security Officer II
Location: Annapolis Junction, MD
Clearance: Active TS/SCI w/ Polygraph needed to apply
Pay Range: $175 - 195K

Position Description:
The ISSO Level 2 is responsible for supporting the planning, coordination, and execution of IT security programs and policies across multiple systems. This role works closely with system developers, administrators, system owners, and the IA team to implement and maintain required security controls. The ISSO Level 2 manages system changes, performs continuous monitoring, maintains security documentation, and supports Assessment and Authorization (A&A) activities to ensure systems obtain and retain Authorization to Operate (ATO). The position requires hands-on experience with system administration, network administration, cloud technologies, auditing tools, and vulnerability scanning solutions, along with a solid understanding of IC, DoD, and NIST security requirements.

Key Responsibilities:

• Work with the IA team to plan and coordinate IT security programs and policies.
• Coordinate with system developers, administrators, and system owners on security-related changes.
• Manage and control system changes and assess the security impact of those changes.
• Perform continuous security monitoring and reporting for systems supported under the contract.
• Prepare and maintain security documentation, including System Security Plans (SSPs), in accordance with IC and Agency policies.
• Serve as the initial security Approval Authority for supported systems.
• Utilize COTS/GOTS tools to communicate system status and compliance to management and stakeholders.
• Support the AO/DAO, SCA, and ISSM with system Assessment and Authorization (A&A) tasks to obtain and maintain ATOs.
• Conduct daily review and respond to security-related tickets.
• Apply Windows or Linux system administration experience to support system security.
• Apply network administration experience to support system operations and security.
• Use AWS experience to support cloud-based system environments.
• Utilize audit reduction tools such as Splunk to analyze logs and events.
• Use vulnerability scanning tools such as Nessus to identify, track, and report system vulnerabilities.
• Work with tools such as Xacta and LatteArt to support A&A and compliance activities.
• Apply familiarity with IC, DoD, and NIST security policies and procedures to ensure system compliance.

Requirements:
Bachelor's Degree in an IT discipline with two (2) years of experience in any combination of: System Administration (SA), Information System Security (ISSO/ISSE), IT Service Desk, Computer Network Defense (CND) Analysis, Telecommunications, or Network Administration. Associate's Degree in an IT discipline with four (4) years of experience in the areas listed above. High School Diploma with ten (10) years of experience in the areas listed above.
Certifications: DoD 8570 compliance with Information Assurance Management (IAM) Level I or higher is required. (SEC+; CAP; CND; Cloud+; GSLC; HCISSP)
Position: Information Systems Security Officer II
Location: Annapolis Junction, MD
Clearance: Active TS/SCI w/ Polygraph needed to apply
Pay Range: $175 - 195K

Position Description:
The ISSO Level 2 is responsible for supporting the planning, coordination, and execution of IT security programs and policies across multiple systems. This role works closely with system developers, administrators, system owners, and the IA team to implement and maintain required security controls. The ISSO Level 2 manages system changes, performs continuous monitoring, maintains security documentation, and supports Assessment and Authorization (A&A) activities to ensure systems obtain and retain Authorization to Operate (ATO). The position requires hands-on experience with system administration, network administration, cloud technologies, auditing tools, and vulnerability scanning solutions, along with a solid understanding of IC, DoD, and NIST security requirements.

Key Responsibilities:

• Work with the IA team to plan and coordinate IT security programs and policies.
• Coordinate with system developers, administrators, and system owners on security-related changes.
• Manage and control system changes and assess the security impact of those changes.
• Perform continuous security monitoring and reporting for systems supported under the contract.
• Prepare and maintain security documentation, including System Security Plans (SSPs), in accordance with IC and Agency policies.
• Serve as the initial security Approval Authority for supported systems.
• Utilize COTS/GOTS tools to communicate system status and compliance to management and stakeholders.
• Support the AO/DAO, SCA, and ISSM with system Assessment and Authorization (A&A) tasks to obtain and maintain ATOs.
• Conduct daily review and respond to security-related tickets.
• Apply Windows or Linux system administration experience to support system security.
• Apply network administration experience to support system operations and security.
• Use AWS experience to support cloud-based system environments.
• Utilize audit reduction tools such as Splunk to analyze logs and events.
• Use vulnerability scanning tools such as Nessus to identify, track, and report system vulnerabilities.
• Work with tools such as Xacta and LatteArt to support A&A and compliance activities.
• Apply familiarity with IC, DoD, and NIST security policies and procedures to ensure system compliance.

Requirements:
Bachelor's Degree in an IT discipline with two (2) years of experience in any combination of: System Administration (SA), Information System Security (ISSO/ISSE), IT Service Desk, Computer Network Defense (CND) Analysis, Telecommunications, or Network Administration. Associate's Degree in an IT discipline with four (4) years of experience in the areas listed above. High School Diploma with ten (10) years of experience in the areas listed above.
Certifications: DoD 8570 compliance with Information Assurance Management (IAM) Level I or higher is required. (SEC+; CAP; CND; Cloud+; GSLC; HCISSP)