SOSi

Information Systems Security Officer

Job Locations US-VA-Remote
Job Post Information* : Posted Date 3 weeks ago(5/8/2023 10:17 AM)
ID
2023-6722
Location : Location
US-VA-Remote
Potential for Remote
Yes
Clearance Requirement
Public Trust
Job Requires Relocation
No
Job Requires Relocation
No

Overview

**This position is contingent upon award of contract**

 

SOSi is seeking to hire a highly qualified Information Systems Security Officer to serve as the Government’s trusted security advisor to individual offices.

Responsibilities

  • Document each system’s System Security Plan (SSP).
  • Perform as the trusted security advisor to the System Owner.
  • Manage remediation and mitigation efforts for the systems they are responsible for.
  • Enter data into the system of record’s compliance /assessment tool for each system.
  • Manage System Security Plans (SSPs) for each system using the customer tool of record.
  • Coordinate system security documentation for each system.
  • Support the customer office by responding to inquiries from higher headquarters, as well as communicating with higher headquarters on security concerns that the office has.
  • Ensure vulnerability scanning is performed and follow up on identified vulnerabilities.
  • Perform periodic activities enabling continuous monitoring.

Qualifications

  • 3 years of experience as an ISSO, preferably for the federal government.
  • 5 years collaborating and reviewing System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessment Methods (RAMs), Risk Management Processes (RMPs), Cybersecurity Compliance Certifications (CCCs), Scorecards, and related documents with ISOs and other applicable stakeholders.
  • 3 years of experience with Risk Management Framework (RMF), NIST, FISMA compliance.
  • 5 years of experience in Tenable Nessus, CyberArk, Application Security testing suites, penetration testing tools, Security Information and Event Management (preferably Splunk), one or more Configuration Management Database (e.g. BMC and/or ServiceNow), API automation, and Identity Management systems (e.g., TACACS, AD, Tivoli, OAuth).
  • 3 years of experience with cloud security, including active directory federation services.
  • 3 years of experience with the CSAM (Cyber Security Assessment and Management) software tool (i.e., specifically the software from the DOJ).
  • Ability to attain Public Trust Suitability Determination.

Preferred Qualifications

  • Bachelor's degree

Working Conditions

  • Remote

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed