Clearance Jobs
Information System Security Officer (ISSO)
Clearance Jobs, Hampton, Virginia, United States, 23666
Information System Security Officer (ISSO)
CACI is looking for an Information System Security Officer (ISSO) to support our DoD customer to implement an enterprise IT service delivery model that provides consistent, secure, high-quality, and cost-effective services to enable mission success and improve end user experience across the customer environment. On this program, CACI will deliver enhanced capabilities and services to implement and operate an enterprise ITSM solution, enterprise service desk, endpoint management and security solution, as well as CONUS/OCONUS field support and life cycle support for end user devices to enable the DoD customer to transition focus from IT operations to mission operations. As the ISSO, you will bring a clear technical understanding of cybersecurity concepts, policy, standards, and experience performing cybersecurity tasks in an operational environment. Additionally, you will leverage your experience using a variety of cybersecurity tools to conduct vulnerability monitoring, analysis, and mitigations for the security posture of our customers systems. Responsibilities:
Determine enterprise information assurance and security standards. Develop and implement information assurance/security standards and procedures. Create and maintain System Security Plans for information systems leveraging NIST RMF, DoD RMF, and FEDMRAP methodologies. Ensure that a Certification and Accreditation package is prepared and maintained in accordance with the DoD Information Assurance Certification and Accreditation Process (DIACAP), or the DoD Risk Management Framework (RMF). Recommend information assurance/security solutions to support customer's requirements. Identify, report, and resolve security violations. Establish and satisfy information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands. Support customers at the highest levels in the development and implementation of doctrine and policies. Ensuring development and implementation of procedures in accordance with configuration management (CM) policies and practices for authorizing the use of hardware/software on an IS. Performs analysis, design, and development of security features for system architectures. Analyzes and defines security requirements for computer systems which may include mainframes, workstations, and personal computers. Act as the primary point of contact for stakeholders regarding system ATO inquiries and security compliance matters. Collaborate with IT and security teams to ensure compliance with security controls and facilitate the ATO process. Working knowledge of system functions, security policies, technical security safeguards, and operational security measures. Provides integration and implementation of the computer system security solution. Assist in the development and refinement of security policies and procedures related to ATO and information system security. Analyzes general information assurance-related technical problems and provides basic engineering and technical support in solving these problems. Performs vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle. Conducting Continuous Monitoring in line with the DAF's cATO methodology Qualifications:
Required: Experience managing and auditing privileged user provisioning processes and knowledge of DoD security training requirements. Excellent writing and documentation skills, with experience in creating System Security Plans (SSPs) and related ATO documentation. Experience working independently and, in a team, to support the customer, both on-site and remotely Exceptional verbal and written communication skills, with the ability to engage and educate stakeholders at all levels. Strong analytical and problem-solving skills, with the ability to interpret complex security regulations and standards. DoD 8570 IAT or IAM level III Certified Familiarity with DoD Risk Management Framework (RMF) or DIACAP processes ITIL Foundation (version 4) preferred. BA/BS + 7 years of relevant experience (additional 5+ years of recent relevant experience may be substituted for degree, for a total of 12+ years of experience) Must have TS/SCI Clearance. CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.
CACI is looking for an Information System Security Officer (ISSO) to support our DoD customer to implement an enterprise IT service delivery model that provides consistent, secure, high-quality, and cost-effective services to enable mission success and improve end user experience across the customer environment. On this program, CACI will deliver enhanced capabilities and services to implement and operate an enterprise ITSM solution, enterprise service desk, endpoint management and security solution, as well as CONUS/OCONUS field support and life cycle support for end user devices to enable the DoD customer to transition focus from IT operations to mission operations. As the ISSO, you will bring a clear technical understanding of cybersecurity concepts, policy, standards, and experience performing cybersecurity tasks in an operational environment. Additionally, you will leverage your experience using a variety of cybersecurity tools to conduct vulnerability monitoring, analysis, and mitigations for the security posture of our customers systems. Responsibilities:
Determine enterprise information assurance and security standards. Develop and implement information assurance/security standards and procedures. Create and maintain System Security Plans for information systems leveraging NIST RMF, DoD RMF, and FEDMRAP methodologies. Ensure that a Certification and Accreditation package is prepared and maintained in accordance with the DoD Information Assurance Certification and Accreditation Process (DIACAP), or the DoD Risk Management Framework (RMF). Recommend information assurance/security solutions to support customer's requirements. Identify, report, and resolve security violations. Establish and satisfy information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands. Support customers at the highest levels in the development and implementation of doctrine and policies. Ensuring development and implementation of procedures in accordance with configuration management (CM) policies and practices for authorizing the use of hardware/software on an IS. Performs analysis, design, and development of security features for system architectures. Analyzes and defines security requirements for computer systems which may include mainframes, workstations, and personal computers. Act as the primary point of contact for stakeholders regarding system ATO inquiries and security compliance matters. Collaborate with IT and security teams to ensure compliance with security controls and facilitate the ATO process. Working knowledge of system functions, security policies, technical security safeguards, and operational security measures. Provides integration and implementation of the computer system security solution. Assist in the development and refinement of security policies and procedures related to ATO and information system security. Analyzes general information assurance-related technical problems and provides basic engineering and technical support in solving these problems. Performs vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle. Conducting Continuous Monitoring in line with the DAF's cATO methodology Qualifications:
Required: Experience managing and auditing privileged user provisioning processes and knowledge of DoD security training requirements. Excellent writing and documentation skills, with experience in creating System Security Plans (SSPs) and related ATO documentation. Experience working independently and, in a team, to support the customer, both on-site and remotely Exceptional verbal and written communication skills, with the ability to engage and educate stakeholders at all levels. Strong analytical and problem-solving skills, with the ability to interpret complex security regulations and standards. DoD 8570 IAT or IAM level III Certified Familiarity with DoD Risk Management Framework (RMF) or DIACAP processes ITIL Foundation (version 4) preferred. BA/BS + 7 years of relevant experience (additional 5+ years of recent relevant experience may be substituted for degree, for a total of 12+ years of experience) Must have TS/SCI Clearance. CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.