Job SummaryWe have an exciting opportunity for an Information Systems Security Officer (ISSO) to join our Classified Systems team in Herndon, VA.
With general supervision, this position is responsible for participating in monitoring, evaluating and administering system compliance with information technology (IT) security requirements to ensure company, regulatory and customer requirements are met.
DUTIES AND RESPONSIBILITIES:- Conducts ongoing vulnerability assessments and security audits to identify cybersecurity risks in accordance with Department of Defense (DoD), Department of Energy (DOE), and Intelligence Community (IC) standards, regulations, and cybersecurity policies/procedures.
- Drives improvements necessary to mitigate those risks.
- Implement cybersecurity requirements for local area networks (LANs), wide area networks (WANs), routers, firewalls, and related network devices which typically requires experience with Cisco IOS.
- Builds and implements workstations and servers running multiple operating systems such as Windows 11, Windows Server, and RedHat Linux.
- Builds and implements virtualization infrastructure using tools such as VMware or HyperV.
- Monitors multiple company information systems for indicators of compromise (IoC) to identify insider threats and potential espionage activity.
- Performs technical analysis of vulnerabilities and leads in the development of vulnerability corrective action plans.
- Conducts a regular review of network, application and operation system security documents and procedures.
- Reviews results of vulnerability assessments and code reviews and informs management of vulnerabilities, risk and mitigation.
- Proven ability to leverage technical expertise in the following:
- Splunk Enterprise, installation and management.
- Nessus Vulnerability Assessment, installation, and management.
- Security Technical Implementation Guide (STIGs) to identify, analyze, and remediate security threats.
- Network and System Administration.
- Windows Backup procedures and management.
- Implementing secure configurations based on NIST (800-53, 800-171) with Continuous Monitoring (CONMON) principles.
- Knowledge of Risk Management Framework (RMF) is a plus.
- Responsible for observing all laws, regulations and other applicable obligations wherever and whenever business is conducted on behalf of the Company. Expected to work in a safe manner in accordance with established operating procedures and practices.
- Performs additional duties as assigned.
Technical Skills:
- Splunk Enterprise
- Nessus Vulnerability Assessment
- Security Content Automation Protocol (SCAP)
- Security Technical Implementation Guide (STIG) and STIG Viewer
- Network and System Administration
- Active Directory Management
- Windows Backup
Experiences:
- Implemented Splunk Enterprise for real-time security monitoring and incident response, leading to a quantifiable improvement to threat detection and response.
- Utilized Nessus Vulnerability Assessment to identify and prioritize security vulnerabilities within the network infrastructure, resulting in overall security posture.
- Leverage Assured Compliance Assessment Solution (ACAS) to automate security data ingestion and processing, streamlining operations and improving efficiency.
- Ensured system security by adhering to STIGs and utilizing STIG viewer to maintain configuration compliance with industry best practices.
- Supported network and system administration tasks, including user management, access control, and system maintenance.
- Performed regular Windows Backups to ensure data availability in the event of a system failure or security incident.
- Demonstrated understanding of NIST security frameworks (800-53, 800-171, other special publication guides).
- Applying CONMON principles for continuous monitoring and risk mitigation.
Job Qualifications- Typically requires a bachelors degree in a related discipline and six or more years of progressive professional experience in information assurance or a related field. Equivalent professional experience may be substituted in lieu of education.
- Must possess an active Top Secret (with SAP & SCI eligibility).
- Must maintain DoD 8570 IAM Level I (e.g. Security +) professional certification as required by customers or contractual obligations.
- Security + certification required.
- Experience with DoD policy such as Risk Management Framework and Joint SAP Implementation Guide.
- Operational experience with installing, troubleshooting, and auditing Windows desktop & server operating systems.
- Experience with DISA STIGs, SCAP tool, ACAS.
- Experience installing and troubleshooting common x86-based computer hardware.
- Must demonstrate a general understanding of information assurance principles, theories, concepts and techniques. Must have experience organizing, planning, scheduling, conducting, and coordinating work assignments to meet project milestones or established completion dates.
- Must possess the ability to understand new concepts quickly and apply them in an evolving environment while contributing to the development of new processes.
- Must be customer focused and possess:
- The ability to identify issues, analyze data and develop solutions to a variety of problems.
- Good analytical, verbal and written communication skills to accurately document, report, and present findings.
- Good interpersonal skills enabling an effective interface with other professionals; and good computer skills.
- Ability to work independently or in a team environment is essential as is the ability to work extended hours as required.
Soft Skills:
- Problem-Solving
- Analytical thinking
- Attention to detail.
- Adaptability
- Communication
- Teamwork