Information Systems Security Officer - Springfield VA

Job Description

ATTENTION MILITARY AFFILIATED JOB SEEKERS - Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans, Transitioning Military, National Guard and Reserve Members, Military Spouses, Wounded Warriors, and their Caregivers. If you have the required skill set, education requirements, and experience, please click the submit button and follow the next steps. Unless specifically stated otherwise, this role is "On-Site" at the location detailed in the job post.

Job Description
BAE Systems Federal customer is seeking an Information Systems Security Officer (ISSO) who will be responsible for ensuring the confidentiality, integrity, and availability of automated information systems, and providing support during Assessment and Authorization (A&A) activities. The position will provide oversight and monitoring of all A&A activities as well as tracking and monitoring of statistics related to meeting Federal and agency compliance requirements. The best candidate will also have the ability to roll up their sleeves and assist with infrastructure enhancements.

Job Responsibilities
ISSO will drive the ATO (Authority To Operate) process for a new system from start to finish working with System Owner, Technical Teams, Infrastructure Teams, Systems Teams, ISSMs, Security Assessors, PM, CM etc.
Create risk acceptance and waiver requests and submit for approval to OCIO.
Manage to create and maintain Plan of Actions and Milestones (POA&Ms) and working aggressively for their closures working with appropriate resources.
Ensure OCFO systems maintain a passing score in IACS (JCAM and Continuum) system.
Create and maintain system security documentation to include FIPS 199, System Security Plan, Contingency Plan, Security Control Assessment, etc.
Create monthly account audits and review audit logs to ensure current documentation is available for yearly OCFO consolidated audits.
Create Contingency Planning documentation and conduct required training and conduct required incident response reporting.
Review monthly continuous monitoring reports submitted to the Vulnerability Management Group and collaborate with System Engineer as needed.
Perform daily Information Security Vulnerability Monitoring alerts (all must be researched & respond as to if they are applicable to the different software/services/platforms...etc. that exist in the system accreditation boundary).
Advise management of new security, regulations or policies within DHS and monitor NIST guidance that may effect ongoing system management.
Ensure all system users and people with security responsibilities receive their annual awareness training. Review and validate user access rights.
Approve PAR and RAR requests for system users. Ensure all system users sign the Rules of Behavior (ROB) before being granted access.
Participate in the Change Request (CR) process (i.e., reviewing/approving change requests and conducting impact analyses). Support Change Control Boards as required. Review/deactivate unused accounts.
Perform monthly reviews of FedRAMP COntinuous Monitoring data for SaaS systems.
Apply deep expertise in the Risk Management Framework (RMF) and System Development Life Cycle (SDLC) to guide programs throughout system authorization and acquisition lifecycles
Develop system documentation.
Assist with system infrastructure monitoring and enhancements, including appropriate software installations that comply with approvals and specifications.

Additional Qualifications/Responsibilities

Required Education, Experience, & Skills
Bachelors degree and 5 years of related experience (education requirement may be substituted with an additional 4 years experience)
Ability to obtain and maintain DHS suitability

Preferred Education, Experience, & Skills
Current DHS Suitability
Cybersecurity and risk management certifications
Experience advising on system architecture
Understanding or infrastructure patching operations

Pay Information
Full-Time Salary Range: $118095 - $200762