Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
PJH
Viewer II
a month ago
a month ago

Information Systems Security Officer - Washington DC area

Our company is seeking a dedicated and experienced Information Systems Security Officer (ISSO) to join our team. The ISSO will play a critical role in ensuring the confidentiality, integrity, and availability of our client’s information systems. This position requires a proactive individual with a strong understanding of cybersecurity frameworks, regulatory compliance, and risk management, as well as hands-on expertise in security tools.

 

Job Description

Location: Washington, D.C. (Hybrid Role: remote currently; in-office anticipated in near-term future)
Employment Type: Full-Time, Experienced

Work Schedule (Core Hours): Monday to Friday, 8:00 AM to 5:00 PM

Compensation: Competitive 1099-based compensation

Education: Bachelor’s degree in Computer Science, Information Technology, or a related field

Experience: Minimum of 7 years of IT related experience (2 years in cybersecurity and/or information security roles, preferably as an ISSO, Information Assurance (IA) Consultant/Analyst, and/or security assessor)

Certifications: CISSP, CISM, CISA, or equivalent professional certification is highly preferred. Cloud-specific certifications, such as those tied to AWS, Azure, and GCP, or the CCSP and CompTIA certs, are preferred.

Skills: Strong analytical and problem-solving skills; excellent communication skills and attention to detail; able to multi-task in a deadline-oriented environment; proficiency in security tools and technologies (e.g. Tanium, Qualys, etc.); in-depth knowledge of federal standards and information security frameworks, especially NIST SP 800-53 and NIST SP 800-37

Clearance: Public Trust is the minimum level required; current active clearance is preferred

Key Responsibilities

  • Work with different stakeholders and asset owners to drive the full lifecycle of assessment and authorization of assigned systems, including creating, updating, and maintaining security plans and communicating key issues and findings with management
  • Provide expert technical guidance to identify, monitor and coordinate vulnerabilities mitigation efforts and facilitating scanning and patch management
  • Own and manage all remediation action plans for assigned systems, ensuring accurate documentation to align with applicable internal policies and NIST standards
  • Maintain a comprehensive and accurate inventory of components (hardware, software, cloud, interconnections) for assigned systems, ensuring it's up-to-date and aligns with approved asset management systems and conventions such as CDM, FISMA, and audit expectations
  • Support risk management framework activities and draft, maintain, and update critical security documentation like security plans, risk assessment reports and contingency plans
  • Ensure alignment of security controls implementation with security plans, review system configurations, report statuses of action plans progress, and recommend policy and template updates
Reply
0 Replies