Information System Security Officer - Mid

As a Top Secret cleared Information Systems Security Officer, you will work in an organization dedicated to developing and operating software for critical national security applications. The organization utilizes SCRUM and SAFE Agile methodologies along with strong DevOps practices.

You will be responsible for technical information assurance efforts, including network/server scanning, patching, mitigation, and compliance cross-checking of network assets. Experience with ST&E processes and POAM generation is required. You should have a strong understanding of COTS security analysis tools, government mitigation and compliance checkers, and standards such as FISMA, DIACAP, NIST-800 SPs, and DCID 6/3. You will also need experience in product selection to meet client needs and presenting findings.

This position is contingent upon award and requires on-site presence at the customer facility in Washington, DC.

• Serve as the principal advisor on all security matters involving the information system, advising the System Owner, Business Process Owner, and CISO/ISSM.
• Ensure security controls are implemented and maintained, protecting assets from modification, disclosure, or destruction.
• Guide physical security measures and provide reports on data security effectiveness, recommending new procedures as needed.
• Assist with the Authority to Operate (ATO) process, including reviewing, developing, and navigating documentation such as the System Security Plan and contingency plans.
• Create and update Plan of Action and Milestone (POAM) documents based on vulnerability data.
• Apply expertise to complex assignments, contributing innovative solutions and ensuring quality deliverables.

• Active Top Secret clearance with SCI eligibility
• At least 2 years of experience managing LANs or WANs
• Certifications such as MCP, CompTIA-Network+, or CompTIA-Security+ are desirable
• Bachelor's Degree in Information Systems, Security, Engineering, or related field; in absence of degree, additional experience may be substituted

• Code quality and standardization practices
• Experience with Git and Azure DevOps
• Knowledge of Agile principles and project management