Full Time Employee Contractor
Overview: Provide support for a program, organization, system, or enclaves information assurance program; provide support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies; maintain operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed; assist with the management of security aspects of the information system and perform day-to-day security operations of the system; evaluate security solutions to ensure they meet security requirements for processing classified information; perform vulnerability/risk assessment analysis to support certification and accreditation; provide configuration management (CM) for information system security software, hardware, and firmware; manage changes to system and assess the security impact of those changes; prepare and review documentation to include Systems Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs); support security authorization activities in compliance with NSA/CSS Information System Certification and Accreditation Process (NISCAP) and DoD Information Assurance Certification and Accreditation Process (DIACAP).
TS SCI W/ POLY
Five (5) years of experience is required as an ISSO including experience in at least one (1) of the following areas: knowledge of current security tools, hardware/software security implementation, communication protocols or encryption techniques/tools.
Bachelor of Science from an accredited college or university in Computer Science or related
field may be substituted for four (4) years of experience.
DoD 8570 IAT Level-1or higher is required.
Ensures AIS and network nodes are operated, maintained, and disposed of in accordance with security policies and practices. Perform Information System Security Officer (ISSO) duties in support of in-house and external customers. Also, perform duties as the alternate Information Systems Security Manager (ISSM). Duties include, but are not limited to reviewing and developing AIS accreditation/ certification support documentation; notifying the customer when changes occur that might affect AIS accreditation/certification; performing system and network self-inspections; providing security coordination and review on all system test plans; attending system IPT and CCRB meetings; identifying AIS vulnerabilities and implementing countermeasures; representing the customer on various technical review teams; conducting security surveys at subordinate facilities and gathering pertinent security documentation for inclusion into system accreditation packages; coordinating, preparing and tracking AIS inspections, reports and responses; maintaining AIS security records; advising on and preparing Co-Utilization Agreements for network nodes operating in subordinate government and contractor facilities; and receiving direction from the ISSM and government PSO.
To apply for this job, contact: