Information Systems Security Officer (ISSO)

K

Kelaca

Information Systems Security Officer (ISSO)

Raleigh, NC
Full Time
Paid
  • Responsibilities

    Kelaca has an immediate need for an experienced Information Systems Security Officer (ISSO) for our client partner in Raleigh, NC. The ISSO will support the Information System Security Manager (ISSM) to ensure the appropriate operational security posture is maintained for multiple information systems and secure networks. The ISSO will continuously monitor that each system or network meets the Risk Management Framework (RMF) requirements and are kept up to date according to System Security Plans, the DAAPM/NISPOM, and applicable NIST Publications. In this position, the ISSO will build, configure and maintain systems that adhere to a collective of different government regulations.

    Key Responsibilities:

    • Ensure systems are operated, maintained, and disposed of in accordance with security policies and procedures
    • Generate and maintain required IS security documentation including Systems Security Plans (SSP), Information Assurance Standard Operating Procedures (IA SOP), Continuous Monitoring Plans, Security Control Traceability Matrices, Risk Assessments, Plan of Action & Milestones (POA&M), equipment specifications, practices and procedures
    • Maintain day-to-day security posture and continuous monitoring of various classified systems
    • Assist in ensuring compliance with the DCSA Assessment and Authorization Process Manual (DAAPM), Department of Defense (DoD) regulations, Intelligence Community Directives (ICDs), and Security Technical Implementation Guides (STIGs)
    • Schedule, perform and maintain records of required IS auditing, patching, maintenance, software/hardware changes, and scanning based on evolving threat/vulnerabilities and customer compliance requirements
    • Develop and conduct test procedures for verification of Assessment and Authorization (A&A) & Risk Management Framework (RMF) safeguards to meet customer requirements based upon NISPOM, DAAPM and related NIST publications
    • Assess changes to an IS by performing periodic self-inspections, tests and reviews of the IS program to ensure that systems are operating as authorized/accredited and that conditions have not changed; ensure corrective actions are taken for identified findings and vulnerabilities
    • Maintain a working knowledge of IS functions, security policies, technical security safeguards, and operational security measures. Coordinate with Facility Security Officer (FSO) and Program Security Officers (PSO) to define, implement and maintain information security policies, strategies, and procedures
    • Implement policies and procedures for responding to security incidents, and for investigating and reporting security violations and incidents
    • Assist ISSM with the development, documentation, and presentation of classified IS security education, awareness, and training activities
    • Assist the ISSM with preparation for Defense Counterintelligence and Security Agency (DCSA) Security Vulnerability Assessments (SVA), Command Operational Readiness Assessments (CORA), and Other Government Agency (OGA) inspections
    • Performs other duties as required

    Skills and Experience:

    • U.S. citizenship is required and an active Secret clearance
    • High School Diploma with 8-10 years of experience
    • Have a strong understanding of computer operating systems (Windows and Linux), software, and computer hardware
    • Ability to configure laptops/desktops/servers, install applications, setup network infrastructure, and troubleshoot as required
    • 1 year of experience performing vulnerability assessments
    • 1 year of experience conducting STIG/SCAP compliance scans (SCC)
    • 2 years of experience working with Microsoft Active Directory and Group Policy Management
    • Possess and maintain a DoD 8570 IAM-I level professional certification (i.e. Security +) or can obtain the certification within six (6) months of hire

    Preferred Experience:

    • BS Degree with 2-4 years of experience or MS Degree with 1-2 years of experience
    • Top Secret Clearance with SCI eligibility
    • Strong organizational and administrative skills
    • Strong interpersonal skills working with all levels of staff and customers
    • Ability to work independently and exercise good judgment
    • Strong written and verbal communications skills
    • Maintain and adhere to a high level of confidentiality
    • Possess the ability to multitask, prioritize workload, and be flexible
    • Possess the ability to learn new systems and procedures quickly
    • Proficient in IA Security specifications such as Risk Management Framework (RMF), NIST SP 800-53, DAAPM
    • 2 years of experience with security assessment/hardening tools, i.e. STIGs, SCAP, ACAS, etc.
    • Security+ Certification
    • IS Security Professional
    • CompTIA CySA+

    Security Clearance Requirements:

    The projects that will be assigned involve government work and US Citizenship is required. Selected applicant must have an active Secret Security Clearance.

    NO THIRD PARTIES.

     

    Job Type: Full-time

    Hours of On-Site Work: Monday-Friday; 8am-5pm

    FLSA Exemption Status: Exempt

    Benefits: Health, Dental, Vision, 401K, 17.5 days PTO, 10 Holidays, ESOP

     

    Apply to Kelaca today so we can schedule a conversation with you to further discuss this exciting opportunity.


    Kelaca is an Equal Opportunity Employer and does not discriminate in employment based on: age, disability, national origin, race, color, religion, protected veteran status, genetic information, gender, sex, gender identity, sexual orientation, pregnancy, or other non-merit factor.

  • Industry
    Graphic Design