We're currently seeking an Information Systems Security Officer (ISSO) for a position open in Herndon,...
We're currently seeking an Information Systems Security Officer (ISSO) for a position open in Herndon, VA. The ideal candidate must be familiar with NIST SP 800-53 security controls, able to maintain security authorization documentation and possess intimate knowledge of compliance requirements in FedRAMP and FISMA. The position is responsible for completing functions that entails security control implementation, continuous monitoring, and federal Assessment and Authorization (A&A) activities.Client:U.S. Federal Government Agency Security Clearance:Must be able to obtain a Public Trust Work Location:Herndon, VA Contract Term:Long Term (1+ years) Contract Type:W-2 Job Responsibilities/Duties:- Works closely with client to ensure operational security measures are implemented- Assesses and mitigates system security risks; determines and analyzes security requirements for implementation and testing- Reviews and continuously monitors implemented security controls- Creates and maintains security checklists, templates and other tools to aid in the A&A process- Performs security control assessment using NIST 800-53A guidance and as per continuous monitoring requirements- Performs risk analyses to determine and recommends essential safeguards- Proactively mitigates system vulnerabilities and recommends compensating controls- Prepares security authorization packages in accordance with the client contractual requirements- Develops core documents such as System Security Plan, Contingency Plan, Incident Response Plan, Standard Operating Procedures, Plan of Actions and Milestones, Remediation Plans, Configuration Management Plan, etc.- Maintains client-specific Plan of Action and Milestones and supports remediation activities- Maintains an inventory of hardware and software for the information system- Develops, tests and trains on Contingency and Incident Response planning- Conducts independent scans of application, network and database and utilizes Managed Security Services Vulnerability Assessment Team (VAT) support as applicableThe ISSO operates as a trusted advisor in the organization, working with client management and focusing specifically on the security environment in relation to client business objectives. The ISSO helps to understand operational issues and plans the next steps in collaboration with Account ASOs from an information security viewpoint. The position will be able to demonstrate industry expertise and understanding of security governance and compliance. This position requires the ability to interact and influence at an organizational level to carry out governance, risk and compliance activities. Education/Experience Required:- Bachelor or master degree in Computer Science, Computer Studies, Information Security (or equivalent combination of education and experience)- 3 - 5 years' experience working in a risk management, audit, security or technical delivery role- Knowledge of the security countermeasures and overall RMF and NIST compliance regulations- Excellent and effective verbal and written communication skills- Ability to work effectively in diverse, multi-national, virtual environments and develop working relationships with customers, colleagues and other stakeholders- Self-motivated and purposeful- Demonstrate sound judgment and principle- Experience implementing, assessing and managing security controls for federal IT systems- Expert knowledge of FISMA or FedRAMP- Adept knowledge of current IT security threats Preferred Additional Experience:- Experience in overall Security Risk and Compliance initiatives- CISSP, CISM/CISA or CRISC- Fluent in EnglishIf you would like to be considered for this position, please respond back to us with:a) a copy of your updated resume;b) a phone number where we can reach you and the best time to call; - provided by DiceNIST SP 800-53, FedRAMP, FISMA, C&A, A&A