Specialist, Cyber Intelligence (ISSO) TSSCI

Job Description :

Performs ISSO duties under the guidance of the Information System Security Manager (ISSM) on assigned government-authorized systems.

• Knowledgeable in information technology and security. Responsibilities include : authoring and maintaining documentation supporting the Assessment & Authorization (A&A) of assigned systems in accordance with the Risk Management Framework (RMF) under the ICD503 and NISPOM;
• performing security control assessments as part of the systems’ Continuous Monitoring Plan; overseeing configuration management of assigned systems;
• working to develop and implement device and system hardening guides following DISA and NIST guidelines; auditing systems to ensure security posture integrity;
• conducting periodic hardware / software inventory assessments; identifying system security controls shortcomings and developing POA&Ms;
• remediating control deficiencies; conducting, documenting and reporting annual self-assessments; maintaining operational information security posture for a system, program, or enclave;

investigating security incidents such as data spills and malicious events; authoring and delivering security education and training to a range of audiences.

Essential Functions :

• Author and maintain Assessment & Authorization (A&A) documentation of assigned systems
• Perform security control assessments and execute Continuous Monitoring Plans
• Work with IT and system administration organizations to develop device and system hardening guides following DISA and NIST guidelines
• Maintain patching compliance along with hardware and software baselines
• Responsible for customer interface in the tracking and resolution of POA&Ms
• Ensure all systems are comprehensively monitored for anomalous activity
• Manage the incident response process for areas of responsibility
• Develop new concepts, standards, and training material which make significant and impactful improvements to processes, systems, solutions, or products
• Lead inventory and asset management discovery and tracking activities
• Work with site leadership to improve the security posture of systems and the facility

Qualifications :

Bachelor’s Degree and minimum 4 years of prior relevant experience. Graduate Degree and a minimum of 2 years of prior related experience.

In lieu of a degree, minimum of 8 years of prior related experience.

• Bachelor's degree (Bachelor’s or Graduate degree in Cybersecurity or a related discipline from an accredited college is preferred)
• Active Top Secret security clearance with the ability to obtain SCI
• DoD 8570.01-M IAM II certification
• Minimum 4 years of prior relevant experience to include experience with networking equipment; experience interpreting vulnerability scanning results;

experience reviewing workstation, server, firewall, & IPS logs; experience with SIEM tools

• Experience as an ISSO managing cybersecurity on classified systems under multiple agencies’ JSIG, NISPOM Ch8, ICD 503, and / or NIST 800-53 implementations
• Experience developing, managing, and providing evidence to close POA&Ms associated with the A&A and project management processes
• Experience with workstation and server operating systems, including but not limited to Microsoft and Linux offerings

Preferred Additional Skills :

• DoD 8570.01-M IAT III certification
• Willingness to submit to a counterintelligence (CI) polygraph investigation (current polygraph preferred)
• Flexibility to adjust to changing requirements, schedules, and priorities
• Able to socialize ideas, make recommendations, and gain team consensus
• Excellent time management and task prioritization skills.
• Exceptional verbal, written, interpersonal and presentation skills, customer relationship building skills, analytical skills and ability to lead / mentor teammates.
• High level of personal motivation and initiative to learn and acquire new skills
16 days ago