RCG is a growing federal contracting company and Certified™ as a Great Place to Work®. We are looking for strongly qualified people to help support our clients. We are currently seeking anInformation System Security Officer (ISSO) for a full-time position as part of an ongoing contract in Washington DC near Farragut West metro station. RCG is a growing federal contracting company looking for strongly qualified people to help support our clients.
Please note: Due to the secure nature of this government agency, all candidates must be U.S. citizens and hold a current, active SECRET CLEARANCE and DoD 8570/8320-compliant certifications. This is an ON-SITE position with one day per week for telework.
The successful candidate will receive a contingent offer based on the outcome of a government background check. This will take several weeks, and the candidate cannot begin actual employment until the background check is successfully completed.
Primary Duties:
- Will work with management to define appropriate standards, policies, and procedures to facilitate the management, accountability, and security of the server environment.
- Writing and reviewing security documentation in alignment with NIST and FISMA controls, identifying gaps in security policy, and recommending enhancements.
- Applies specialized knowledge and experience with the implementation and management of the NIST Special Publication (SP) 800 family of publications.
- Providing Registration Authority Officer (RAO) functions such as creating tokens for users and handling related documentation for accounts management.
- Liaise with federal client ISSO/ISSM to ensure policies and procedures are established, enforced, and audit compliant.
- Utilizing ACAS scan data to track vulnerabilities (CVEs and CTOs) and ensure they are documented and delegated to appropriate Data Center personnel for remediation.
- Managing Plan of Action and Milestones (POA&M) and risk-based decision documentation for any vulnerabilities that cannot be resolved within the appropriate timeframe.
- Development of high-value briefings and talking points for senior leadership, with key participation in internal and external events, often on short notice.
- Assisting in scanning servers for STIG compliance monthly, management and administration of security compliance tools, and with contractual deliverables and reports.
Qualifications include:
- Must possess a current, active government clearance of Secret or greater.
- 5+ years of experience in a Security-focused role.
- Security+ or CISSP is a baseline requirement. Must also have at least one higher-level technical certificate to be fully 8570/8320 compliant.
- ACAS or HBSS certification.
- Experience leveraging log aggregation tools for data analysis and presentation; creation of Splunk dashboards and queries.
- Exceptional written and verbal communication skills in the English language.
- Applied knowledge and experience with NIST 800-53 controls and related concepts.
- Experience with vulnerability scanning execution, assessment, and analysis.
- Operating system and network knowledge (Windows 10, Windows Server 2012R2, RHEL, LAN).
- Possess ability to assess and weigh current and evolving security threats in an operational environment.
- Ability to work cooperatively and collegiality with others, on multidisciplinary teams and to establish professional working relationships, to work independently to solve problems quickly and completely.
- Must be able to lead operational security policy discussions with minimal guidance, and to handle a fast-paced environment.
Preferred certifications/education: CISSP, Security+, CASP, CISA, ACAS, HBSS, Splunk Enterprise Certified Admin; Bachelor's Degree in Information Technology, Information Security, or related field.
Physical Demands: Must be able to lift hardware up to 50 pounds.Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
RCG, Inc. does not discriminate against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibits discrimination against all individuals based on their race, color, religion, sex, sexual orientation/gender identity, or national origin.