Job Details
Level
Experienced
Job Location
VA - Corp - Manassas, VA
Position Type
Full Time
Education Level
Not Specified
Job Shift
Day
Job Category
Information Technology
Job Information
Contingent upon contract award
POSITION SUMMARY:
- Broadleaf is looking for an Information Systems Security Officer (ISSO) to join our USAID Development Information Solution Complete Operations (DISCO) team supporting the client in securing sensitive data and critical assets from current and emerging threats. The ISSO will be involved with providing information systems security for the DISCO environment. This includes building trusted relationships with stakeholders and mission partners to shape the security vision for this project.
JOB DESCRIPTION:
- The Information Systems Security Officer (ISSO) develops, tracks, and submits documentation for RMF, A&A, ATO, etc. The ISSO verifies systems are operated, maintained, and disposed of in accordance with DoD security policies and procedures. The ISSO conducts assessments and validates all documentation in accordance with the security plan. The ISSO creates and tracks POA&Ms and addresses all identified findings and vulnerabilities per the timeline. The ISSO verifies audit records are collected and analyzed and system monitoring and recovery is in place for properly restoring functioning systems. The ISSO documents, implements, and administers security procedures for computer systems with DoD cybersecurity requirements as well as reads, evaluates, and remediates STIGs, vulnerability scans, and logs. The ISSO advocates for and manages the necessary resources, including technical support, and key security personnel, to support IT security goals and objectives and reduces overall organizational risk.
BASIC QUALIFICATIONS:
- A minimum of five (5) years of experience with all phases of Information Assurance and accreditation processes, securing IT systems and services using Government and industry IA standards, policies, guidelines, and best practices.
- Demonstrated experience managing and leading a security operations staff with skills applicable to a project environment similar in size and scope referenced in this Task-Order.
- Demonstrated experience successfully managing information security risks to include completing the entire A&A process including receiving Authority to Operate (ATO) for the cloud.
- Experience supporting vulnerability scanning tools
- Experience performing Security Operations in environments with 10,000+ endpoints
- Working knowledge of network security
- Five (5) years of experience producing IAT-Related documentation and governance materials
- Five (5) years of experience conducting Assessment and Authorization (A&A) using Risk Management Framework (RMF) activities
CERTIFICATION(S) REQUIREMENT:
- At least one of the following computer security certifications:
- CISSP, CCSP, CISM, GSLC, CISA, CASP, or equivalent from issuing bodies: (ISC)², Comp TIA, ISACA, GIAC, CISCO, EC-Council, IAPP, or equivalent.
WORK ENVIRONMENT AND PHYSICAL DEMANDS:
- Remote telework in the DC area
Other Information
BENEFITS:
- Health, Dental, Vision, 401K Matching, AD&D Insurance
EEO Employer F/M/Vet/Disabled