An Cyber Security Specialist - Information Systems Security Officer (ISSO) plays a critical role in safeguarding an organization’s IT infrastructure, data, and systems from internal and external cyber threats. As an ISSO, your responsibilities include:
Risk Assessment and Mitigation:
- Proactively identifying security risks within the organization’s IT environment.
- Developing and implementing risk management plans to address vulnerabilities.
- Monitoring networks, databases, and computer systems to ensure security measures are effective.
Security Policy Implementation:
- Creating and enforcing security policies and procedures.
- Developing RMF policies and procedures compliant with DoD rules and regulations
- Ensuring the confidentiality, integrity, and availability of data.
- Providing guidance to employees on security best practices.
Incident Response and Breach Handling:
- Responding promptly to security incidents and breaches.
- Investigating and mitigating security breaches.
- Coordinating with relevant stakeholders to address security issues.
Technical Expertise:
- Performing security updates and patches.
- Conducting SCAP scans and completing STIG checklists
- Reviewing ACAS scans and making recommendations for appropriate remediations
- Managing POA&Ms in conjunction with System Owners, System Administrators, and client Cybersecurity personnel
- Conducting penetration tests to assess system effectiveness.
Minimal Qualifications and Experience:
- Applicants selected will be subject to a government security investigation and may meet eligibility requirements, including U.S. Citizenship, for access to classified information; Active DoD TOP SECRET clearance level is required
- High School Graduate with at least 12 years professional experience as ISSO
- Security +CE Certification
- CASP+ certification
Preferred Skills:
- Bachelor's degree in Computer Science, Information Technology or a related technical field and 7-9 years of direct cybersecurity experience in an ISSO role
- Masters’ degree in Computer Science, Information Technology or a related technical field and 5-7 years of direct cybersecurity experience in an ISSO role
- Relevant certifications, such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM), are highly valued.
Abilities:
- Exposure to computer screens for an extended period of time.
- Sitting for extended periods of time.
- Reach by extending hands or arms in any direction.
- Have finger dexterity in order to manipulate objects with fingers rather than whole hands or arms, for example, using a keyboard.
- Listen to and understand information and ideas presented through spoken words and sentences.
- Communicate information and ideas in speaking so others will understand.
- Read and understand information and ideas presented in writing.
- Apply general rules to specific problems to produce answers that make sense.
- Identify and understand the speech of another person.
#cj