- Plan, develop, review and maintain baselines for clients information system to such as, System Security Plans, Software & Hardware Boundaries Documents and Diagrams, Control Implementation Matrix, Inheritance and Overlay Memos, Security Assessment and Authorization artifacts and ATO packages.
- Lead and facilitate meetings with system owners, executive management, staff, and contract partners and technical personnel to provide IT security guidance, define system boundaries, and establish and maintain information security standards and procedures in compliance with information security and risk management policies, standards, and guidelines.
- Plan, develop, and conduct vulnerability and compliance scans, contingency plan testing, and risk assessment on clients information systems. Analyze results to identify and mitigate risk to IT systems, identify training opportunities, and update and improve information systems documentation in accordance with clients IT security policies and System Security Plan (SSP).
- Participate in internal and external reviews, inspections, Security Assessments and Authorizations and audits to ensure compliance with federal laws, clients security policy as well as FISMA and NIST requirements.
- Provide expert security advice to system development organizations to ensure adequate security controls are included in each system lifecycle phase.
- Lead remediation efforts when security controls are insufficient, weaknesses are identified in network security configurations, and vulnerabilities deviate from clients security policy or federal guidelines by recommending corrective actions to mitigate identified deficiencies and developing POAMs.
- Review and analyze information system audit records for unusual or potentially unauthorized activity. Conduct investigations into activities which are in violation of system and organization security policies.
- Incorporate organizational continuous monitoring solutions into information system operations. Ensure compliance with clients continuous monitoring policies and procedures.
- High School Diploma or equivalent
- Basic-level understanding of basic computer and networking technologies: + TCP/IP stack
- Windows operating systems
- Linux/Unix-based operating systems
- Networking technologies (routing, switching, VLANs, subnets, firewalls)
- Common networking protocols
- Common enterprise technologies
- Moderate-level understanding of IT security principles, technologies, best practices, and NIST guidance
- Logical Access Control
- PKI and other encryption method
- DISA STIG Security configuration baselines
- Auditing
- Vulnerability discovery and management
- NIST SP rev. 4 control
- Excellent communications skills. Ability to communicate with senior management and federal client staff
- Mastery of federal IT security laws such as the Federal Information Security Management Act (FISMA), policies, regulations, requirements, Executive Orders and Presidential Decision Directives such as EO 13556, HSPD12, OMB Memos M-06-16, and M-07-16; NIST 800 series, the federal IT security and incident reporting hierarchy.
- Knowledge and experience in categorizing systems per current NIST guidelines, defining system boundaries and identifying minimum and supplementary security controls to protect sensitive and critical IT systems.
- Knowledge and experience with the Risk Management Framework (RMF), Assessment and Authorization (A&A), SSP Development, and conducting audits of security controls.
- Knowledge and experience protecting the confidentiality, integrity and available of sensitive and critical information systems
- Knowledge and experience performing network security vulnerability assessments.
- Knowledge and experience with all areas of the System Development Lifecycle (SDLC) of IT systems.
- Basic-level understanding of common computer and networking technologies: + TCP/IP stack
- Windows operating systems
- Linux/Unix-based operating systems
- Networking technologies (routing, switching, VLANs, subnets, firewalls)
- Common networking protocols
- Common enterprise technologies
- Interest in security/hacking culture. Ability to think like an attacker
- Certifications of interest:
- Security
- Certified Authorization Professional (CAP)
- Project Management Professional (PMP)
- Microsoft Certified Solutions Associate (MCSA)
- Red Hat Certified System Administrator (RHCSA)
- Technical background
- Software application developer
- System administrator
- Network engineer
- IT Helpdesk Tier II or above
- Bachelors Degree or higher in information technology or information security-related field
- Interest in security/hacking culture. Ability to think like an attacker
- Certifications of interest:
- Security
- CISSP
- Certified Authorization Professional (CAP)
- Microsoft Certified Solutions Associate (MCSA)
- Red Hat Certified System Administrator (RHCSA)
-
Security Officer
2 weeks ago
Allied Universal Olympia, United States Paid WorkAllied Universal, North America's leading security and facility services company, provides rewarding careers that give you a sense of purpose. While working in a dynamic, diverse and inclusive workplace, you will be part of a team that fuels a culture that will reflect in our com ...
-
Security Officer
1 week ago
Allied Universal Lacey, United StatesAllied Universal - JobID: [Security Officer / Security Guard] As an Access Control Security Guard at Allied Universal, you'll: Fingerprint, create badges, activate, deactivate ID cards, and respond to employee termination emails; Display excellent customer service skills and prof ...
-
Security Officer
2 days ago
Allied Universal Lacey, United States Part timeAllied Universal - JobID: [Security Officer / Security Guard] As a Security Officer at Allied Universal, you'll: Be responsible for the Security and Safety of the client's property and personnel; Know all site-specific policies and procedures, and implement emergency response act ...
-
Security Officer
1 week ago
Allied Universal Lacey, United StatesAllied Universal - JobID: [Security Officer / Security Guard] As a Security Officer at Allied Universal, you'll: Be responsible for the Security and Safety of the client's property and personnel; Know all site-specific policies and procedures, and implement emergency response act ...
-
Security Officer
1 week ago
Allied Universal Lacey, United StatesAllied Universal - JobID: [Security Officer / Security Guard] As a Security Officer at Allied Universal, you'll: Be responsible for the Security and Safety of the client's property and personnel; Know all site-specific policies and procedures, and implement emergency response act ...
-
Security Officer
1 week ago
Allied Universal Lacey, United StatesAllied Universal - JobID: [Security Officer / Security Guard] As a Security Officer at Allied Universal, you'll: Be responsible for the Security and Safety of the client's property and personnel; Know all site-specific policies and procedures, and implement emergency response act ...
-
Security Officer
1 week ago
Allied Universal Lacey, United StatesAllied Universal - JobID: [Security Officer / Security Guard] As a Security Guard at Allied Universal, you'll: Be responsible for the Security and Safety of the client's property and personnel; Know all site-specific policies and procedures, and implement emergency response activ ...
-
Information System Security Officer
3 weeks ago
Coalfire Federal Olympia, United StatesCoalfire Federal is a market leading cybersecurity consultancy firm that provides independent and tailored advice, assessments, technical testing and a full suite of cyber engineering services to Federal agency customers.Coalfire Federal along with its parent company, Coalfire, h ...
-
Information System Security Officer
2 weeks ago
Department of Transportation Olympia, United States** Information System Security Officer (ISSO) - Detail Opportunity****Department of Transportation****Location**1 vacancy in the following location:** Relocation expenses reimbursed**No** Telework eligible**Yes as determined by agency policy**Duties**** Summary**The incumbent ser ...
-
Information System Security Officer
3 weeks ago
Coalfire Federal Olympia, United StatesCoalfire Federal is a market leading cybersecurity consultancy firm that provides independent and tailored advice, assessments, technical testing and a full suite of cyber engineering services to Federal agency customers. · Coalfire Federal along with its parent company, Coalfir ...
-
Chief Information Security Officer
3 weeks ago
U.S. Department of Housing and Urban Development Olympia, United States** Chief Information Security Officer** · **Department of Housing and Urban Development** · The U.S. Department of Housing and Urban Development (HUD) is seeking highly qualified individuals who are willing to meet the challenges of public service and support our mission. At HUD, ...
-
Information System Security Officer
2 weeks ago
Department of Transportation Olympia, United States** Information System Security Officer (ISSO) - Detail Opportunity** · **Department of Transportation** · **Location** · 1 vacancy in the following location: · ** · Relocation expenses reimbursed** · No · ** · Telework eligible** · Yes as determined by agency policy · **Duties* ...
-
Chief Information Security Officer
3 weeks ago
Missionwired Olympia, United States**Chief Information Security Officer** · Washington, DC - Remote Flexibility / Operations / Full Time · Were digital-obsessed, tech-savvy do-gooders who care deeply about social change. · Weve brought digital strategies to life for nonprofit organizations working around the wor ...
-
Information System Security Officer
1 week ago
LTS Olympia, United StatesLocation: **Washington, DC** **Information System Security Officer (ISSO)**LTS is seeking a **Information System Security Officer (ISSO)** to support its Cybersecurity Solutions practice in Herndon VA. This role requires hands on experience and performs a variety of cybersecurity ...
-
Chief Information Security Officer
3 weeks ago
Foursquare Olympia, United States**Chief Information Security Officer** · at Foursquare · Seattle, WA · Foursquare is the leading independent location technology and data cloud platform, powered by dedicated to building meaningful bridges between digital spaces and physical places. Our proprietary technology u ...
-
Information Systems Security Officer
1 week ago
Computer World Services, Corp. Olympia, United States· > · * · > · * · > · * · > · * · > · Information Security Analysts · Information Systems Security Officer (Remote) · at Computer World Services, Corp.(CWS) · Job Description · Job Description · To effectively manage Cybersecurity risk to the Office, the contractor will a ...
-
Information Systems Security Officer
2 weeks ago
Guidehouse Olympia, United States**Information Systems Security Officer** · CAROUSEL_PARAGRAPH · * · Washington, Washington, DC · * · Client Services · * · 15894 · ** · Share Job** · ** Job Description** · **Overview** · Guidehouse is a leading global provider of consulting services to the public and commerc ...
-
Information Systems Security Officer
2 weeks ago
ManTech International Corporation Olympia, United States*****All ManTech employees will need to meet the requirements set forth in Executive Order 14042 and the Safer Federal Workforce Task Force Guidance requiring all covered contractor personnel to be fully vaccinated against COVID-19.***** · **Secure our Nation, Ignite your Future* ...
-
Information Systems Security Officer
2 weeks ago
DANASTAR Professional Services, LLC Olympia, United StatesDANASTAR is currently seeking talented, experienced Information System Security Officers (ISSO) for an exciting position supporting one of our premier clients. Our project is aimed at establishing cutting-edge techniques for network defense, identifying threats and detecting mali ...
-
Tau Six Llc Olympia, United States**Principal Information System Security Officer (ISSO)*** Washington, DC* Full-Time* Principal Information System Security Officer (ISSO)**Tau Six, an agile small company delivering cutting edge cybersecurity and systems integration services to the US National Security market, ha ...
Information Systems Security Officer - Olympia, United States - Bering Straits Native Corporation
Description
Job TitleInformation Systems Security Officer
Education
Certification Name
Location
Washington, DC BGS - Washington DC, DC 20008 US (Primary)
Job Description
Visit our website at
to apply
SUMMARY
Bering Global Solutions, LLC, a subsidiary of Bering Straits Native Corporation is currently seeking a qualified Information Systems Security Officer for a government client in Washington, DC.
The selected individual will guide system owners, designated IT security personnel in the program offices, and other staff in fulfilling Federal Information Security Management Act (FISMA) requirements.
The ISSO works to analyze, plan, and execute the work necessary to ensure the confidentiality, integrity and availability of the federal clients IT systems, network, and data through the planning, analysis, development, implementation, maintenance, and enhancement of information systems security programs, policies, procedures and tools.
ESSENTIAL DUTIES & RESPONSIBILITIES
*The Essential Duties and Responsibilities are intended to present a descriptive list of the range of duties performed for this position, and are not
intended to reflect all duties performed within the job. Other duties may be assigned.
QUALIFICATIONS - EXPERIENCE, EDUCATION AND CERTIFICATION
*To perform this job successfully, an individual must be able to satisfactorily perform each essential duty. The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Required (Minimum) Qualifications
The ideal candidate will have experience with Cloud Computing Offerings (Cloud Systems, SaaS, IaaS, PaaS).
*
Familiarity with Cloud Service Providers (CSPs) and basic cloud deployment models.
in a clear and concise manner using proper spelling, punctuation and grammar.
Knowledge, Skills and Abilities
Preferred
Experience working as any of the following:
PHYSICAL REQUIREMENTS
*The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Must maintain a constant state of mental alertness at all times. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Essential and marginal functions may require maintaining physical condition necessary for bending, stooping, sitting, walking or standing for prolonged periods of time; most of time is spent sitting in a comfortable position with frequent opportunity to move about.
WORK ENVIRONMENT
*Work Environment characteristics described here are representative of those that must be borne by an empl
#J-18808-Ljbffr