Switch4 LLC
Title:
Cloud Information System Security Officer (Cloud ISSO) Location:
Washington, DC Job Type:
FTE/Permanent
Responsibilities: Ensure the day-to-day implementation, oversight, continuous monitoring, and maintenance of the security configuration, practices, and procedures for each IS. Provide liaison support between the system owner and other IS security personnel. Ensure that selected security controls are implemented and operating as intended during all phases of the IS lifecycle. Ensure that system security documentation is developed, maintained, reviewed, and updated on a continuous basis. Conduct required IS vulnerability scans according to risk assessment parameters. Develop Plan of Action and Milestones (POAMs) in response to reported security vulnerabilities. Manage the risks to ISs and other assets by coordinating appropriate correction or mitigation actions, and oversee and track the timely completion of POAMs. Coordinate system owner concurrence for correction or mitigation actions. Monitor security controls to maintain system Authorization To Operate (ATO). Upload all security control evidence to the Governance, Risk, and Compliance (GRC) application to support security control implementation during the monitoring phase. Ensure that changes to the IS, its environment, and/or operational needs that may affect the authorization status are reported to the system owner and IS Security Manager (ISSM). Ensure the removal and retirement of ISs being decommissioned in coordination with the system owner, ISSM, and ISSR. Required Qualifications:
bachelor's or advanced degree in Computer Science, Cybersecurity, or another cyber discipline is preferred. At least 5 years of experience serving as an Information Systems Security Officer (ISSO). Minimum of 7 years of work experience in a computer science or cybersecurity-related field. Hold at least one of the following certifications:
Certified Information Systems Security Professional (CISSP) ,
Global Information Security Professional (GISP) , or
CompTIA Advanced Security Practitioner (CASP) , or other certifications that align with IAM Level II proficiency. Hold at least one
security certification from AWS, Azure, or GCP , such as:
AWS Certified Security - Specialty (ISC)2 Certified Cloud Security Professional (CCSP) AWS Certified Solutions Architect - Associate AZ-500: Microsoft Certified: Azure Security Engineer Associate Google - Professional Cloud Security Engineer
Familiarity with security tools including Tenable Nessus and/or Security Center, IBM Guardium, Client WebInspect, Network Mapper (NMAP), or similar applications.
Cloud Information System Security Officer (Cloud ISSO) Location:
Washington, DC Job Type:
FTE/Permanent
Responsibilities: Ensure the day-to-day implementation, oversight, continuous monitoring, and maintenance of the security configuration, practices, and procedures for each IS. Provide liaison support between the system owner and other IS security personnel. Ensure that selected security controls are implemented and operating as intended during all phases of the IS lifecycle. Ensure that system security documentation is developed, maintained, reviewed, and updated on a continuous basis. Conduct required IS vulnerability scans according to risk assessment parameters. Develop Plan of Action and Milestones (POAMs) in response to reported security vulnerabilities. Manage the risks to ISs and other assets by coordinating appropriate correction or mitigation actions, and oversee and track the timely completion of POAMs. Coordinate system owner concurrence for correction or mitigation actions. Monitor security controls to maintain system Authorization To Operate (ATO). Upload all security control evidence to the Governance, Risk, and Compliance (GRC) application to support security control implementation during the monitoring phase. Ensure that changes to the IS, its environment, and/or operational needs that may affect the authorization status are reported to the system owner and IS Security Manager (ISSM). Ensure the removal and retirement of ISs being decommissioned in coordination with the system owner, ISSM, and ISSR. Required Qualifications:
bachelor's or advanced degree in Computer Science, Cybersecurity, or another cyber discipline is preferred. At least 5 years of experience serving as an Information Systems Security Officer (ISSO). Minimum of 7 years of work experience in a computer science or cybersecurity-related field. Hold at least one of the following certifications:
Certified Information Systems Security Professional (CISSP) ,
Global Information Security Professional (GISP) , or
CompTIA Advanced Security Practitioner (CASP) , or other certifications that align with IAM Level II proficiency. Hold at least one
security certification from AWS, Azure, or GCP , such as:
AWS Certified Security - Specialty (ISC)2 Certified Cloud Security Professional (CCSP) AWS Certified Solutions Architect - Associate AZ-500: Microsoft Certified: Azure Security Engineer Associate Google - Professional Cloud Security Engineer
Familiarity with security tools including Tenable Nessus and/or Security Center, IBM Guardium, Client WebInspect, Network Mapper (NMAP), or similar applications.