Information Systems Security Officer - Herndon, VA, United States - Altus Consulting Corp

    Altus Consulting Corp
    Altus Consulting Corp Herndon, VA, United States

    1 week ago

    Altus Consulting Corp background
    Technology / Internet
    Description
    Altus Consulting is seeking a skilled Information Systems Security Officer (ISSO) to ensure the security and compliance of client systems and networks
    You will leverage your deep understanding of industry standards and security best practices to conduct assessments, develop security plans, and advise system administrators on security posture
    This role requires collaboration with various stakeholders to maintain comprehensive cyber defense and achieve client security objectives

    Responsibilities:
    Conduct security assessments using industry-standard frameworks (NIST RMF, ICD 503) and tools (Nessus, Rapid7).
    Develop and maintain security plans and documentation (SSPs, policies, guidance).
    Monitor and analyze security posture, identifying and prioritizing vulnerabilities.
    Advise and guide system administrators on security best practices and hardening techniques.
    Respond to and remediate security incidents effectively and efficiently.
    Stay up-to-date with the latest cyber security threats, trends, and regulations.
    Contribute to the continuous improvement of security processes and controls.
    May support vulnerability management, security awareness training, and compliance initiatives.

    Preferred Skills:
    Strong problem-solving and analytical skills.
    Excellent communication and collaboration skills.
    Ability to work independently and as part of a team.
    Passion for cyber security and continuous learning.
    Experience with security frameworks and methodologies (NIST CSF, MITRE ATT&CK).
    Experience with security tools and technologies ( SIEM, EDR, SOAR).
    Strong written and verbal communication skills.
    Ability to prioritize tasks and manage time effectively.

    Basic Qualifications:
    Active TS/SCI with poly clearance is required.
    Bachelor's degree in Cyber Security, Information Systems, Engineering, or related field.
    Two years of experience with security assessments and documentation.
    Two years of experience advising system administrators on security best practices.
    Demonstrated knowledge of network architecture, system hardening, and Windows and Linux environments.
    At least one relevant cyber security certification (Security+, SSCP, CAP, CISM, CISSP, etc.).

    Desired Qualifications:
    Two or more relevant cyber security certifications.
    Three or more years of experience with sponsor/IC A&A processes.
    Experience with mobile device security, hardware evaluation, and incident response.
    Additional certifications in network infrastructure, security testing, or other relevant areas.

    Disclaimer:
    The information provided in this job description is accurate and truthful to the best of our knowledge
    However, it is not intended to be a contract, and we reserve the right to modify the job description at any time
    Altus Consulting is dedicated to diversity and inclusion, building a work environment where everyone feels respected and valued
    We firmly believe in equal opportunity, guaranteeing fair and unbiased treatment for all individuals in all aspects of employment, regardless of race, color, religion, national origin, gender, sexual orientation, gender identity, pregnancy, childbirth or related medical conditions, age, protected veteran status, or disability status
    We oppose discrimination in any form, and our commitment is evident in every interaction.