Requires TS/SCI w/ poly.
Position is for an ISSO/ISSE familiar with software development, maintenance, system integration, and lifecycle support. Requires working knowledge of the NIST Risk Management Framework (RMF) along with customer tools/processes necessary to create, register, monitor, authorize, and maintain Information Systems.
Primary Roles and Responsibilities:
- Provide support to the Information System Owner (ISO) for maintaining the appropriate operational IA posture for a system/program/enclave
- Provide support for implementing and enforcing information systems security policies, standards, and methodologies to meet customer specific requirements
- Analyze scans and system alerts to develop/implement methodologies for incident/vulnerability detection, remediation, and reporting IAC customer specified requirements
- Evaluate security solutions to ensure they meet customer specified security requirements.
- Develop and update System Security Plans (SSPs) and other IA documentation for Certification & Accreditation in accordance with specified policies
- Provide support for security-relevant changes to information system resources and architecture
Must possess one active qualifying cert:
- CAP
- CASP+ CE
- CISM
- CISSP (or Associate)
- GSLC
- CCISO
- HCISPP