Information Systems Security Officer (ISSO) (Journeyman)Redstone Arsenal/Huntsville, ALJob Description:Manage classified and unclassified systems through the Assessment & Authorization (A&A) process, performing the steps of Risk Management Framework in accordance with NIST SP 800-37r2. Coordination with Information System Owners (ISOs) to complete system categorization, select security controls, and perform self-assessments. Utilize the (RMF) Enterprise Mission Assurance Support Service (eMASS) to create packages, upload artifacts, select security controls, and produce implementation plans. Research, develop, implement, test, and review an organization's information security to protect information systems. Identify organization project's risks, prioritize those risks, mitigate risk, and present unmitigated risks to leadership. Research and present the information necessary to maintain security through risk mitigation. Review systems to identify potential security weaknesses, recommend improvements, implement and document changes.
Responsibilities:- Produce eMASS documentation
- Auditing and reporting of FISMA and NIST 800-53 compliance (cybersecurity compliance)
- Prepare documentation from information obtained from customer using accepted guidelines such as RMF (Risk Management Framework)
- RMF package development and review
- Risk and vulnerability self-assessments and corrective actions
- Provide assessment and authorization (A&A) support in the development of security and contingency plans
- Continuous monitoring and reporting of cyber threats, vulnerabilities, and risks
Requirements:- Bachelor's degree in a related field
- Eight (8) years of prior experience in a similar role
- Strong communication and organizational skills
- DoD 8570 Level II/III certification desired
- Active Security Clearance required
#clearance
