Input Technology Solutions is seeking an Information System Security Officer (ISSO) to support and contribute to our government customer's success in Las Vegas, Nevada.
In this role, you will serve as a Principal Adviser on all matters involving the security of an Information System (IS). You will have the detailed knowledge and expertise required to manage the security aspects of an information system and be assigned responsibility for the day-to-day security operations of a system. You will assist in the development of the security policies and procedures and ensure compliance with those policies and procedures through ongoing monitoring and assessments. In close coordination with the Information System (IS) owner and the Information System Security Manager (ISSM), you will play an active role in the evaluation or risk associated with a system, enforcing and assessing the controls, monitoring the security impact of changes to the systems, and developing and updating the security documentation associated with the system.
Duties, Tasks & Responsibilities:
- Ensuring the implementation of DOE and NNSA cybersecurity policies and procedures for designated information systems
- Conducting the Assessment and Authorization (A&A) activities for designated systems
- Documenting the implementation of protection measures within the security plan for the systems
- Ensuring the appropriate access is provisioned for users of designated systems
- Identifying, assessing, and documenting threats and risks to designated systems
- Capturing and maintaining information system security artifacts
- Conducting cybersecurity tests and assessments and providing results of these activities to the ISSM
- Evaluating the security impact and recommending implementation strategies for security significant
- changes to the assigned information systems
- Identifying cyber security training needs in terms of job responsibilities or roles
- Conducting information system risk assessments
- Responding to and reporting of incidents related to their assigned information systems
- Development of security processes and procedures to support the ISSMβs Cyber Security Program
- Creating and maintaining disaster recovery and incident response plans and participating in
- associated training
- Formally and informally presents information in group and individual settings
Required Experience, Education, Skills & Technologies:
- U.S. Citizenship (NO dual-citizenship)
- Bachelorβs Degree in a related field with appropriate background and knowledge of current industry
- technologies/standards for enterprise networks. Four (4) years of work experience in computer and
- information technology related field may be considered as substitution for degree
- Five (5) years of IT work experience with a preference for cybersecurity experience.
- Prior experience in information security/information assurance roles in may be substituted for education requirements (e.g., examples of experience with implementing and managing FISMA, FedRAMP, DoDI 8500.2, HIPAA, or PCI requirements)
- DoD 8570 IAT Level II and/or IAT Level III (i.e., CISSP) certification or the ability to obtain it within 6 months
- Experience with NIST SP 800-53, Risk Management Framework (RMF), and security assessment tools
- Demonstrated knowledge and/or experience with Operating System, Virtualization, and Networking
- technologies
- Must be able to demonstrate specialized experience applying the principles, practices, and
- techniques used by information systems security personnel
- Proficiency with Microsoft Office products (Word, Outlook, Excel, PowerPoint, and SharePoint)
- Must have strong attention to detail
- Effective verbal and written communication and presentation skills
- Strong planning, organizational, and time management skills
- Demonstrated initiative and ability to work independently, as well as strong interpersonal skills that
- Foster the ability to work effectively on teams, communicate effectively