Lead, Cyber Intelligence TSSCI - (ISSO)

Job Description :

Performs ISSO duties under the guidance of the Information System Security Manager (ISSM) on assigned government-authorized systems.

• Knowledgeable in information technology and security. Responsibilities include : authoring and maintaining documentation supporting the Assessment & Authorization (A&A) of assigned systems in accordance with the Risk Management Framework (RMF) under the ICD503 and NISPOM;
• performing security control assessments as part of the systems’ Continuous Monitoring Plan; overseeing configuration management of assigned systems;
• working to develop and implement device and system hardening guides following DISA and NIST guidelines; auditing systems to ensure security posture integrity;
• conducting periodic hardware / software inventory assessments; identifying system security controls shortcomings and developing POA&Ms;
• remediating control deficiencies; conducting, documenting and reporting annual self-assessments; maintaining operational information security posture for a system, program, or enclave;

investigating security incidents such as data spills and malicious events; authoring and delivering security education and training to a range of audiences.

Essential Functions :

• Author and maintain Assessment & Authorization (A&A) documentation of assigned systems
• Perform security control assessments and execute Continuous Monitoring Plans
• Work with IT and system administration organizations to develop device and system hardening guides following DISA and NIST guidelines
• Maintain patching compliance along with hardware and software baselines
• Responsible for customer interface in the tracking and resolution of POA&Ms
• Ensure all systems are comprehensively monitored for anomalous activity
• Manage the incident response process for areas of responsibility
• Develop new concepts, standards, and training material which make significant and impactful improvements to processes, systems, solutions, or products
• Lead inventory and asset management discovery and tracking activities
• Work with site leadership to improve the security posture of systems and the facility
• Perform vulnerability, compliance, and network mapping scans on information systems and work with system administrators to address vulnerabilities.

Qualifications :

• Bachelor's degree (Bachelor’s or Graduate degree in Cybersecurity or a related discipline from an accredited college is preferred)
• Active Top Secret / / SCI security clearance with CI Polygraph
• DoD 8570.01-M IAM II certification
• Minimum 8 years of prior relevant experience to include experience with networking equipment; experience interpreting vulnerability scanning results (e.

g. Nessus, Rapid7, etc.); experience reviewing workstation, server, firewall, & IPS logs; experience with SIEM tools

• Experience as an ISSO managing cybersecurity on classified systems under multiple agencies’ JSIG, NISPOM Ch8, ICD 503, and / or NIST 800-53 implementations
• Experience developing, managing, and providing evidence to close POA&Ms associated with the A&A and project management processes
• Experience with workstation and server operating systems, including but not limited to Microsoft and Linux offerings
• Experience conducting scans with tools such as Tenable Nessus, Rapid7 Nexpose, and Nmap within various operating system environments (i.

e., Windows and Linux).

Experience with project management and collaboration applications including Jira and Confluence.

Be able to work independently with minimal oversight

Preferred Additional Skills :

• DoD 8570.01-M IAT III certification
• Willingness to submit to a Lifestyle (FS) polygraph
• Flexibility to adjust to changing requirements, schedules, and priorities
• Able to socialize ideas, make recommendations, and gain team consensus
• Excellent time management and task prioritization skills.
• Exceptional verbal, written, interpersonal and presentation skills, customer relationship building skills, analytical skills and ability to lead / mentor teammates.
• High level of personal motivation and initiative to learn and acquire new skills
30+ days ago