• Senior Information Systems Security Officer (ISSO)

    Job Location US-VA-Reston
    Posted Date 2 months ago(5/22/2019 9:45 AM)
    Job ID
    1855
    Clearance Requirement
    Public Trust
  • Overview

    Strategic Enterprise Solutions, Inc. (SE Solutions) is a proven, results-focused cybersecurity, management, and information technology services firm committed to support federal agencies that focus on protecting and defending our nation’s homeland security, intelligence, and stability. In a rapidly changing threat landscape, we have the organizational agility, deep homeland security experience, cultural insight and multidisciplinary expertise to help our customers accomplish today’s mission and anticipate tomorrow’s demands, efficiently and cost-effectively.

    Contributions

    • Provide consulting to Agencies on Requests for Service for the design, development, and deployment of Ongoing Assessment, Ongoing Authorization, and other Information Assurance (IA) initiatives
    • Provide continuous monitoring to enforce client security policy and procedures and create processes that will provide increased visibility to system owners on impacts to the security posture of systems
    • Ensure system security measures comply with applicable government policies
    • Monitor configuration management changes and assess the impact of modifications and vulnerabilities for each system
    • Ensure that system security requirements are addressed throughout the project and system lifecycle
    • Ensure effective controls and processes are in place and working effectively to maintain a strong system security posture.
    • Perform vulnerability/risk assessment analyses to support Assessment & Authorization (A&A) activities
    • Develop, maintain, and facilitate the appropriate closure of POA&Ms and facilitate with the Agency-designated security Point of Contact (PoC)/ISSO any related remediation activities
    • Understand and monitor operations processes, including but not limited to, the Incident Response Process and Communications Process, to ensure that they are followed properly at Agencies for applicable solutions and tools
    • Ensure the development, documentation, and presentation of IS security education, awareness, and training activities for users and others, as appropriate
    • Provide prompt feedback to Project Management, Engineering and Operations personnel in a timely manner and provide ongoing education on security protocols and procedures

    Qualifications

    • Bachelor's degree is required or equivalent experience may be substituted; B.S. in Information Technology or Information Security desired
    • 8 years of overall experience, including 5+ years of experience in InfoSec specializing in NIST RMF—customer-specific experience highly desired
    • DoD 8570 approved baseline certification (s) (i.e., CISSP, CISM) preferred
    • Experience with customer Ongoing Authorization Program Framework and use cases preferred
    • Experience with customer Continuous Diagnostics and Mitigation (CDM) a plus
    • Experience with AWS Cloud, Azure Cloud, or Cloud implementations and environments
    • Extensive knowledge and experience with information security standards, policies and practices – NIST SP 800-53 rev4, SP 800-37 rev2, FIPS-199, DHS 4300A.
    • Demonstrated experience writing information system security documentation (System Security Plans (SSP), Plans of Action and Milestones (POA&Ms), PTAs, PIAs, CMPs, CPs, and IRPs).
    • Experience using vulnerability assessment tools (NESSUS, AppDetective, etc.), analyzing and interpreting assessment results.
    • Extensive experience analyzing information technology and system risk in complex environments and articulating results (verbal/reports)to all levels of management
    • Ability to research and address information security issues as required as an authority on the subject.
    • FedRAMP experience a plus
    • Strong understanding of infrastructure technologies and functionalities (e.g., firewalls, Windows/Linux servers, Active Directory (AD), Splunk, Solarwinds, CyberArk, etc.)
    • Must be a self-starter and have the ability to think outside of the box to design effective solutions
    • Must have excellent verbal and written communication skills as this position will interact with senior-level executives.
    • Must be a US citizen and pass a background investigation.
    • Able to obtain and maintain a DHS Suitability/Entry on Duty (EOD).
    • Active Secret or Top Secret clearance desired

    About SE Solutions

    Strategic Enterprise Solutions, Inc. (SE Solutions), is a small business serving federal agencies that protect our nation’s security and defend our fellow citizens’ safety. We bring homeland security experience, organizational agility, and multidisciplinary expertise to help our clients respond to a rapidly changing threat landscape, accomplish today’s mission, and anticipate tomorrow’s demands. For more information, visithttp://www.sesolutions.com.

     

    We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. SE Solutions participates in the E-Verify program. 

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed