The ISSO is responsible for ensuring the appropriate operational security posture is maintained for aninformation system and as such, works in close collaboration with the ISSM and ISO. The position shallhave the detailed knowledge and expertise required to manage the security aspects of an information systemand, in many organizations, is assigned responsibility for the day-to-day security operations of a system.This also will include physical and environmental protection, personnel security, incident handling, andsecurity training and awareness. It will be required to work in close coordination with the ISSM and ISO inmonitoring the information system(s) and its environment of operation to include developing and updatingthe authorization documentation, implementing configuration management across authorization boundaries.This will include assessing the security impact of those changes and making recommendation to the ISSM.The primary function is working within Special Access Programs (SAPs) supporting Department of Defense(DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense (OSD) and MilitaryCompartments efforts.
The position will provide “day-to-day” support for Collateral, SensitiveCompartmented Information (SCI) and Special Access Program (SAP) activitiesPerformance shall include:Assist the ISSM in meeting their duties and responsibilitiesPrepare, review, and update authorization packagesEnsure approved procedures are in place for clearing, sanitizing, and destroying various types ofhardware and mediaNotify ISSM when changes occur that might affect the authorization determination of the informationsystem(s)Conduct periodic reviews of Information Systems to ensure compliance with the securityauthorization packageCoordinate any changes or modifications to hardware, software, or firmware of a system with theISSM and AO/DAO prior to the changeMonitor system recovery processes to ensure security features and procedures are properly restoredand functioning correctlyEnsure all IS security-related documentation is current and accessible to properly authorizedindividualsEnsure audit records are collected, reviewed, and documented (to include any anomalies)Attend required technical and security training (e.g., operating system, networking, securitymanagement) relative to assigned dutiesExecute the cyber security portion of the self-inspection, to include provide security coordination andreview of all system assessment plansIdentify cyber security vulnerabilities and assist with the implementation of the countermeasures forthemPrepare reports on the status of security safeguards applied to computer systemsPerform ISSO duties in support of in-house and external customersExperience:3 years related experienceSAP experience desiredPrior performance in roles such as System or Network AdministratorEducation:Bachelor’s degree or equivalent experience (4 years)Certifications:IAT Level I - required to Start (Security+ CE, CCNA Security, etc.)Security Clearance:TS/SCI requiredMust be able to Attain – TS/SCI with CI Polygraph