RCG is a growing federal contracting company and Certified™ as a Great Place to Work®. We are looking for strongly qualified people to support our clients. This is a PROPOSAL EFFORT. We are currently seeking an AssistantInformation Systems Security Officer (A-ISSO) to support Cybersecurity Operations at our Government client site in Suitland, MD (this will be a Hybrid position).
Due to security requirements, all successful candidates will be a U.S. Citizen or Lawful Permanent Resident and be able to successfully pass the required background check.
Job Responsibilities/Duties (not limited to):
- Knowledgeable and proficient Federal Information System Security Laws and Requirements.
- Plans of action and milestone (POA&M) management, to include analyzing control deficiencies and specific findings; developing a plan to fully implement the security control for sustained compliance and resolving all specific findings; and creating logical milestones supported with clear quality artifacts.
- Weekly Requirements Traceability Matrix for all controls implemented on the information system to current, valid artifacts.
- System security plan (SSP) development and support in Cyber Security Assessment & Management plan.
- Coordinate effectively with other stakeholders to manage and obtain artifacts for normal continuous monitoring, security controls assessments and POA&M closure, and to manage the opening and closure reviews of POA&Ms.
- Perform a variety of tasks with direction from project lead or manager and may lead and direct the work of others.
- Continuously monitor the regular software patching, scanning, and configuration management of networks, computing, and communication devices, and control equipment and provide accurate and timely reports on the status of the implementation of the security controls in the system baseline and the related risk.
- Proactively research and quickly respond to policy updates and ensure timely and accurate responses to external requirements.
- Play an active role in supporting the development of the system security plans, core documentation, equipment, and software updates for applicable IT Systems.
- Support annual system assessment and authorization activities, to include continuous monitoring.
- Ensure all networks, computing, communication devices, and control equipment comply with the FISMA and other related Federal security requirements for IT.
- Support the analysis and compilation of IT Security data call responses.
- Manage and control changes to the information system, access and document the security impacts of those changes.
- Develop, maintain, and support the execution of test cases for each IT Security Control requirement.
- U.S. Citizen or Lawful Permanent Resident and be able to successfully pass the required background check.
- Possess 6+ years' experience in IT security.
- BS/BA in appropriate field (or equivalent) and 6 years of experience.
- Excellent English language communication skills, both verbal and written.
- Must be able to work in hybrid work environment including both on-site and telework.
- Possesses, demonstrates, and relies on experience and judgment to plan and accomplish goals.
- Demonstrated written and oral communications skills.
- Experience with Altiris.
- Certificate of Cloud Knowledge (CCAK).
- AWS certification such as Cloud Practitioner or Essential course.
- Certified Cloud Security Professional (CCSP).
- Experience with security monitoring systems.
- Ability to multi-task and engage on multiple projects simultaneously.
- Able to work in a team environment.
Physical Demands: Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
RCG, Inc. does not discriminate against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibits discrimination against all individuals based on their race, color, religion, sex, sexual orientation/gender identity, or national origin.