ISSO Security Officer

El Segundo, CA 90245

Posted: 11/15/2018 Employment Type: Contract Industry: Technical Job Number: 79887
  • Performs daily and weekly information assurance activities, such as auditing and patching classified systems with the goal of maintaining all systems in compliance with corporate and government directives, regulations and policies
  • Create new and manage existing assessment and authorization packages and perform all tasks necessary to obtain and maintain authorization to operate (ATO), such as the implementation of security controls, planning, writing procedures for, and conducting certification testing, facilitating third party certification and penetration testing, addressing plan of action and milestones (POAM) items, and continuous monitoring activities
  • Ensure system authorization packages take into consideration the requirements of government agencies and the owner/users of the systems such as program managers, system engineers, and developers  
  • Design and implement technical security controls for new and existing systems
  • Participate in or lead planning and executing risk management activities such as disaster recovery, continuity of operations, and incident response
  • Participate in or lead computer forensic activities such as using tools and techniques for attack reconstruction, root cause analysis, and providing fix actions, recommendations
Provide administrative support for security policy development and maintenance 
  • 3 years of directly related experience
  • Certification(s) and experience commensurate with Information Assurance Manager Level II (IAM Level II) as specified by DoD 8570.01-M or the ability to be compliant within 6 months of employment
  • Experience in classified environments (DoD, SCI, SAP)
  • Active TS/SCI Clearance 
  • Working knowledge of the Risk Management Framework as provided by NIST Special Publication (SP) 800-37, controls provided in NIST SP 800-53, and assessments provided by NIST SP 800-53A and derived policies, such as the Intelligence Community Directive Number 503 (ICD-503) or the Joint Special Access Program (SAP) Implementation Guide (JSIG)
  • Working knowledge and experience with completing and submitting accreditation or assessment and authorization packages
  • Ability to audit and verify security controls as part of industry standard system hardening or in accordance with customer or government requirements
  • Ability to communicate complex concepts with senior management, technical personnel, and external entities including senior representatives of the US Government and teammates
  • Ability to audit, scan for vulnerabilities, and continuously monitor mixed (Windows, Linux, and devices) computer systems using tools such as scripts, Tenable Nessus and Splunk
  • Proficiency with the Microsoft Office suite (e.g.: Word, Excel, PowerPoint) 
     
Preferred Qualifications:
  • Experience with Microsoft enterprise applications such as Active Directory, Exchange, and SharePoint
  • Ability to participate in or manage Computer Incident Response Team (CIRT) activities, including computer forensic analysis
  • Ability to analyze network traffic using common security devices such as firewalls and intrusion detection systems
  • Familiarity with Public Key Infrastructure (PKI) and other authentication / encryption framework 
Apply Online

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.