Position Title: DHS Information System Security Officer II
Location: NCR
Clearance: TS/SCI
OneZero Solutions is on contract to provide division-wide support for Federal Information Security Modernization Act (FISMA) compliance, execution of the Risk Management Framework (RMF) process to achieve and maintain Authority to Operate (ATO) accreditations and deliver cyber security compliance for DHS operational mission systems. We are looking for personnel to support our DHS customer in achieving its mission of providing division-wide cyber security support for operational mission systems and assisting programs as they navigate the ATO process. The result of these efforts will be that the systems meet all the requirements for ATO approval before they are officially submitted to the Office of Chief Information Officer (OCIO).
Qualified Parking Allowance: Employer may provide a monthly stipend or cover the cost of parking for employees who commute to government site by car.Job Summary- Develop, implement, and maintain comprehensive security policies, procedures, and standards for DHS IT systems and networks.
- Oversee the execution of security assessments, audits, and vulnerability management programs, identifying and mitigating risks.
- Lead the investigation and response to security incidents, ensuring timely and effective containment and remediation.
- Develop and manage security awareness and training programs for DHS personnel, fostering a culture of cybersecurity.
- Partner with IT teams and system owners to integrate security controls into system development and implementation processes.
- Stay at the forefront of evolving security threats, vulnerabilities, and industry best practices, ensuring the DHS maintains a proactive security posture.
Manage and mentor ISSO II (Journeyman) staff, providing career development opportunities.
Qualifications- 7+ years of direct experience serving as an Information Systems Security Officer (ISSO) within the DoD/Federal Government. Experience within the Intelligence Community and Law Enforcement is a strong plus.
- Proven track record of success in leading and managing cyber security programs, demonstrating innovation, initiative, and problem-solving skills.
- In-depth understanding of information security principles and best practices, including network security, system security, encryption, incident response, and risk management.
- Extensive experience with relevant security assessment methodologies and tools, including vulnerability scanning, penetration testing, and configuration review.
- Thorough knowledge of security frameworks and standards, such as DoD STIG, NIST Cybersecurity Framework, FISMA, RMF, and DHS Supplemental IA controls and security policies.
- Experience with OpenRMF is a strong plus.
- Exceptional leadership and communication skills, with the ability to effectively communicate complex technical concepts to both technical and non-technical audiences.
- Strong analytical and problem-solving skills.
- Ability to work independently and as part of a team in a fast-paced environment.
EducationBachelor's degree and/or CRISC, GISP, CASP, CISSP, or other advanced security-related certifications
Additional relevant experience may be considered in lieu of a degree.
