Information System Security Officer (ISSO)

Job Profile:

JR Type:

Job Category:

Minimum Clearance Required to Start:

Percentage of Travel Required:

Type of Travel:

Program/Opportunity Name:

Job Description:

The Opportunity:

CACI is seeking a cleared Information System Security Officer (ISSO) to provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operations IA posture for a system, program, or enclave at Annapolis Junction, MD.

Responsibilities:

1. Maintain operational security posture for an information system or program.
2. Provide Cyber Security oversight, guidance, and support in support of Assessment and Authorization (A&A) as required by the Federal Information Security Management Act (FISMA).
3. Prepare system security plan (SSP) and provide recommendations to assist in obtaining ATOs based on RMF experience IAW established cybersecurity policies and procedures.
4. Verify package submissions have met the threshold for approval such as: CCIs, SCA-V results, POA&Ms, STIGs, Cyber Security Strategies and System Security Plans (SSPs) and other RMF documentation.
5. Identify, develop (either directly, or in coordination with applicable experts), review, and incorporate common artifacts found in an RMF accreditation package such as: system architecture and boundaries, hardware and software lists, risk assessment reports, POA&Ms, data flows, PPSM accounting, and other necessary system, network, and application documentation.
6. Knowledge and experience identifying, assessing, and documenting compliance against applicable DoD security controls (technical, management, operational), within RMF packages.
7. Familiarity with the use of vulnerability scanning and assessment tools (e.g., ACAS/Nessus) necessary to identify and document compliance.
8. Analyze and interpret vulnerability assessment results and formulate plans to mitigate vulnerabilities.
9. Assist with the CM for information system security software, hardware, and firmware. Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades.
10. Oversee the implementation of software patches to maintain the security posture of the organization.
11. Identify information system risks and possible mitigation measures, documenting these in various risk reports and Plans of Action and Milestones (POA&Ms).
12. Perform and complete STIG checklists, monitor IAVM compliance, and appropriately assess and document to completion all associated POA&Ms.
13. Identify, interpret, and evaluate major applications, infrastructure, enclaves, and Enterprise system environments based on proposed accreditation boundaries.
14. Establish and publish upon approval Cybersecurity policies and Standard Operating Procedures (SOPs) as required.
15. Maintain and report assessment and authorization statuses and issues in accordance with organizational guidance.
16. Ability to translate technical IS configurations into non-technical documentation.
17. Responsible for implementing, and enforcing information systems security policies, standards, and methodologies.
18. Strong verbal and written communications and interpersonal skills.

Qualifications:

Required:

1. An active TS/SCI with Poly.
2. 6 years of experience and HS/GED OR Bachelor’s and 2 years of experience.
3. IAT Level II (Security +).
4. Configuration and Document Management.
5. Security Policy.
6. Security Vulnerability Scanning Tools.
7. System Security Plan (SSP).

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn morehere.

The proposed salary range for this position is:

CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.