Job Description
As an Information Systems Security Officer (ISSO), you will join our Classified Cyber Security Team, supporting Department of Defense (DoD) programs to ensure classified information systems meet cyber security requirements and government directives.
In this role, you will leverage your technical skills to :
- Interpret the Joint Special Access Program Implementation Guide (JSIG) to determine technical Information Assurance (IA) requirements, conduct cyber risk assessment activities, including vulnerability analysis, analysis of mitigation solutions, and ensure proper security implementation of the Risk Management Framework (RMF).
- Develop system documentation for information system authorization, security management, and continuous monitoring of both networked and standalone information systems.
- Ensure that selected security controls are implemented and operating as intended during all phases of the information systems lifecycle.
- Provide eyes on glass security monitoring in accordance with DoD requirements by monitoring security infrastructure and security alarm devices for Indicators of Compromise (IOC) utilizing SIEM and cybersecurity tool sets.
- Perform hardware / software configuration management, data integrity containments, and investigations on IA-related security events.
- Coordinate with cyber systems security engineers, system architects, and developers to provide oversight in the development of secure technical solutions.
- Participate in the implementation of current and future security domains, including new service areas such as Cloud Computing and DevSecOps.
Desired skills
Advanced knowledge / experience in the assessment of a comprehensive cybersecurity program to include risk management, reviewing system security plans (SSP)s and associated artifacts (e.
g., POAMs, etc.), identifying secure system configurations (e.g., Win10, Server2016, RHEL, etc.), reviewing system / network audits, and remediating cyber-incidents.
- Experience with Azure / similar cloud environments or recognized cloud proficiency (CCSP, AWS, CSA, CompTIA Cloud+, CCSK or others)
- Experience using cloud security tool sets (i.e. Microsoft Azure Sentinel, Azure Defender)
- Experience with configuration management products (i.e., Ansible, SCCM / MECM, Chef, Puppet, Blade Logic, etc.)
- Possess DoD 8570 IAM Level II or higher certification (i.e. CISSP, CASP, CAP)
23 hours ago