Information System Security Officer (ISSO)

Risk Management Framework, XACTA, LatteArt, Biscotti, SEAR, DoDI 8500.2, NIST 800-53, NIST 800-37, DCID 6/3, NISPOM, DITSCAP, DIACAP, Analysis and Evaluation of Hardware and Software, Active TS/SCI with a Polygraph
Full Time
Depends on Experience
Travel required to 10%.

Job Description

The ISSO is responsible for the following duties:

  • Develop system security documentation in support of authorization and continuous monitoring under the DoD Risk Management Framework (RMF)
  • Coordinate with DAOs Data Owners, SAs and devs for Security relevant changes to SSPs
  • Monitor/maintain SSPs for hardware and software changes
  • Participate in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access
  • Ensures systems are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the System Security Plan
  • Ensures that all system users have the requisite security clearances, authorization, and need-to-know, and are aware of their security responsibilities before granting access 
  • Review audit events for information systems and address events/incidents that occur with stakeholders
  • Provide guidance for identifying, drafting, and submitting incident reports
  • Ensures all information system security-related documentation is current and accessible to properly authorized individuals
  • Perform Nessus scans as required
  • Evaluates proposed changes or additions to the information system, and advises the Information Systems Security Manager (ISSM) of their security relevance
  • Participate in internal / external security audits/inspections
  • Directs program system administrators on security matters

Required Qualifications:

  • You must have an active TS/SCI with a polygraph
  • Minimum 5 years of relevant experience 
  • Thorough understanding of the RMF process (Risk Management Framework)
  • Highly Experienced with XACTA, LatteArt, Biscotti & SEAR
  • Working knowledge of DoDI 8500.2 “Information Assurance"
  • Thorough understanding of NIST 800-53, NIST 800-37, DCID 6/3, and the NISPOM
  • Experienced with government accreditation requirements under DITSCAP and DIACAP
  • Familiar with Nessus
  • Experience in evaluating, testing, certification and accreditation of classified and sensitive but unclassified information systems
  • Experienced with analysis and evaluation of hardware and software in support of the Intelligence Community (IC)
  • Able to apply current computer security technologies and IA requirements to maintain system security posture
  • Responsible for maintaining and enforcing approved security policies, standards and guidelines
  • Experience working directly with project developers and/or subject matter experts to create security documentation
  • Proficient with MS Word, PowerPoint and working knowledge of various software tools
  • Experience formatting, editing, proofreading, and quality assurance checks on documents
  • Experience in identifying compliance issues, documentation, and incident reporting
  • Experience with Scientific and Engineering Computing Systems
  • Experience with Engineering Test & Measurement Equipment

To fuel our continued growth, Herrick Technology Laboratories, Inc. (HTL), employee owned, small business (150+ employees) environment is seeking committed and talented professionals with varying skill sets and levels of experience. HTL offers a challenging, simulating and rewarding work environment in the following disciplines: Wireless Communications, SIGINT, EW, Electronic Intelligence, ELINT and Radar. Specific positions include System Engineering, Digital Signal Processing, Mechanical Engineering, Digital Engineering, RF Engineering, Software Engineering, Program Management, Quality Assurance, Field Operations, Information Technology, Manufacturing, Logistics, and Business Administration. Openings are available at all levels of experience. Entry level candidates are encouraged to apply. Advanced degrees (MS, PhD) preferred. Positions are open in both our Germantown, Maryland and Manchester, New Hampshire facilities.

Dice Id : RTX1b5c79
Position Id : 6875950
Originally Posted : 5 months ago
Have a Job? Post it