Modern Technology Solutions, Inc. (MTSI)
Information Systems Security Officer
Modern Technology Solutions, Inc. (MTSI), Bath, Ohio, United States
MTSI is seeking a highly motivated and experienced Information Systems Security Officer (ISSO) to support our team in safeguarding information systems for a government customer at WPAFB. The ISSO will assist in the development, implementation, and maintenance of security policies, standards, and procedures to protect our information systems and ensure compliance with applicable government and industry regulations. The ideal candidate will possess a strong understanding of cybersecurity principles, risk management, and security technologies, as well as excellent communication and collaboration skills. This role requires a proactive individual capable of identifying and mitigating security threats, conducting security audits, and working effectively with both technical and non‑technical stakeholders in both independent and team settings. This role is an in‑person role that is co‑located with our government customer’s organization at WPAFB.
Responsibilities
Assist ISSMs in the development, implementation, and enforcement of security policies, standards, and procedures to ensure the protection of information systems and data.
Ensure that all information systems are configured securely according to DoD, organizational policies, industry best practices, and security baselines.
Conduct risk assessments to identify potential security threats and vulnerabilities. Develop and implement mitigation strategies to reduce risk and ensure business continuity. Assess the impact of changes in the IT environment and update the risk management framework accordingly.
Ensure that information systems comply with relevant government and industry standards, such as NIST, and DoD regulations. Demonstrate familiarity with RMF & JSIG processes for assessments and authorization efforts to prepare and maintain documentation for ATO compliance activities.
Implement and manage continuous monitoring processes to maintain compliance with ATO requirements. Utilize Security Information and Event Management (SIEM) tools (e.g., Greylog) to monitor system activities, analyze logs, and identify & report suspicious behavior & anomalous findings.
Conduct regular security audits and assessments to evaluate the effectiveness of security measures and identify areas for improvement. Develop and implement remediation plans to address identified vulnerabilities.
Work closely with system administrators, network engineers, and security analysts to ensure a coordinated approach to cybersecurity. Liaise with external stakeholders & partnering agencies as needed.
Maintain comprehensive documentation of security policies, procedures, system configurations, and security incidents. Prepare reports for management on security status, compliance efforts, and incident response activities.
Research, evaluate, and recommend security enhancements to improve the overall security posture of the organization. Stay updated with the latest security trends, technologies, and threats.
Required Qualifications & Skills
Minimum of 3 years of experience in a similar ISSO or cybersecurity role.
Proficiency in using security tools and technologies, such as VLANs, SIEMs, Static Application Security Testing (SAST) tools, network monitoring tools, and endpoint protection platforms (EPP).
In‑depth knowledge of network security, application security, and endpoint security principles.
Strong understanding of operating systems (Windows, Linux, etc.) and their security configurations.
Hands‑on experience with Greylog or other similar SIEM applications for security monitoring and log analysis.
Experience with security compliance and regulatory requirements, including NIST USAF, and DoD regulations.
Strong analytical and problem‑solving abilities, with the capability to analyze complex security issues and develop practical solutions.
Excellent written and verbal communication skills, with the ability to effectively communicate technical information to both technical and non‑technical stakeholders.
Ability to work independently and collaboratively in small team environments.
Must possess a Top Secret Clearance with SCI eligibility.
Must hold a minimum IAV Level 1 compliant certification, such as Security+ or an applicable DoD 8140 certification (e.g., GSEC, CISSP Associate).
Must be able to lift up to 50lbs.
Desired Skills
Experience with XACTA.
Experience with eMASS.
Experience supporting various guest networks such as CV2, AF7, JWICS.
Experience with AF1067s and ITNRs.
Education Requirement
Associate’s degree and 2 additional years of relevant experience.
Bachelor’s degree (Preferred).
Perks & Benefits Vacation New Hires Accrue 20 days of PTO and 10 Holidays per Year.
Health Insurance Zero Deductible Health Plans.
Flexible Schedules Flex Schedules.
Professional Development Up to $10,000 Annual Education/Training Reimbursement.
ESOP Funded Stock Ownership Plan.
401(k) Match 6% 401(k) Match + Immediate Vesting.
Bonus Program Semi‑Annual Bonus Opportunity.
Mentorship Career Mentorship Programs.
EEO Statement MTSI embraces equal opportunity and is committed to providing reasonable accommodations to applicants and employees with physical and/or mental disabilities. MTSI is committed to Equal Employment Opportunity and providing reasonable accommodations to applicants and employees.
#J-18808-Ljbffr
Responsibilities
Assist ISSMs in the development, implementation, and enforcement of security policies, standards, and procedures to ensure the protection of information systems and data.
Ensure that all information systems are configured securely according to DoD, organizational policies, industry best practices, and security baselines.
Conduct risk assessments to identify potential security threats and vulnerabilities. Develop and implement mitigation strategies to reduce risk and ensure business continuity. Assess the impact of changes in the IT environment and update the risk management framework accordingly.
Ensure that information systems comply with relevant government and industry standards, such as NIST, and DoD regulations. Demonstrate familiarity with RMF & JSIG processes for assessments and authorization efforts to prepare and maintain documentation for ATO compliance activities.
Implement and manage continuous monitoring processes to maintain compliance with ATO requirements. Utilize Security Information and Event Management (SIEM) tools (e.g., Greylog) to monitor system activities, analyze logs, and identify & report suspicious behavior & anomalous findings.
Conduct regular security audits and assessments to evaluate the effectiveness of security measures and identify areas for improvement. Develop and implement remediation plans to address identified vulnerabilities.
Work closely with system administrators, network engineers, and security analysts to ensure a coordinated approach to cybersecurity. Liaise with external stakeholders & partnering agencies as needed.
Maintain comprehensive documentation of security policies, procedures, system configurations, and security incidents. Prepare reports for management on security status, compliance efforts, and incident response activities.
Research, evaluate, and recommend security enhancements to improve the overall security posture of the organization. Stay updated with the latest security trends, technologies, and threats.
Required Qualifications & Skills
Minimum of 3 years of experience in a similar ISSO or cybersecurity role.
Proficiency in using security tools and technologies, such as VLANs, SIEMs, Static Application Security Testing (SAST) tools, network monitoring tools, and endpoint protection platforms (EPP).
In‑depth knowledge of network security, application security, and endpoint security principles.
Strong understanding of operating systems (Windows, Linux, etc.) and their security configurations.
Hands‑on experience with Greylog or other similar SIEM applications for security monitoring and log analysis.
Experience with security compliance and regulatory requirements, including NIST USAF, and DoD regulations.
Strong analytical and problem‑solving abilities, with the capability to analyze complex security issues and develop practical solutions.
Excellent written and verbal communication skills, with the ability to effectively communicate technical information to both technical and non‑technical stakeholders.
Ability to work independently and collaboratively in small team environments.
Must possess a Top Secret Clearance with SCI eligibility.
Must hold a minimum IAV Level 1 compliant certification, such as Security+ or an applicable DoD 8140 certification (e.g., GSEC, CISSP Associate).
Must be able to lift up to 50lbs.
Desired Skills
Experience with XACTA.
Experience with eMASS.
Experience supporting various guest networks such as CV2, AF7, JWICS.
Experience with AF1067s and ITNRs.
Education Requirement
Associate’s degree and 2 additional years of relevant experience.
Bachelor’s degree (Preferred).
Perks & Benefits Vacation New Hires Accrue 20 days of PTO and 10 Holidays per Year.
Health Insurance Zero Deductible Health Plans.
Flexible Schedules Flex Schedules.
Professional Development Up to $10,000 Annual Education/Training Reimbursement.
ESOP Funded Stock Ownership Plan.
401(k) Match 6% 401(k) Match + Immediate Vesting.
Bonus Program Semi‑Annual Bonus Opportunity.
Mentorship Career Mentorship Programs.
EEO Statement MTSI embraces equal opportunity and is committed to providing reasonable accommodations to applicants and employees with physical and/or mental disabilities. MTSI is committed to Equal Employment Opportunity and providing reasonable accommodations to applicants and employees.
#J-18808-Ljbffr