Information Systems Security Officer (ISSO) (NCR)

As the Information Systems Security Officer (ISSO) (NCR), you will act as a model of customer service excellence to all organizational staff members for our customer. You will be responsible for participating with a team of highly qualified professionals and interacting daily with the customer to ensure cyber security controls are created, implemented, followed, and successfully assessed within the RMF to include successful completion and management of the Authority to Operate (ATO). Further, you will participate in the planning and implementation of key IT initiatives anticipated during this effort. Although this position resides in the NCR, there may be a requirement to travel to Naval Station Guantanamo Bay, Cuba, (NSGB) occasionally.

Responsibilities :

• Ensure that all information systems meet Department of Defense Instruction 8500.01 mandated Cybersecurity requirements.
• Provide Information System Security Officer (ISSO) support for customer systems.
• Facilitate information system authorization to operate (ATO) compliance and re-accreditations IAW with DOD 8510.01 and ICD503. This will be for any or all the NIPRNET, SIPRNET, JWICS, and Special Access Program (SAP) Systems
• Facilitate registration and maintenance of information systems in the Enterprise Mission Assurance Support Service (eMASS) system. This support includes all efforts associated with the Risk Management Framework (RMF) activities, such as artifact preparation, submission, and updates.
• Facilitate the completion and submission of waivers, exceptions to policy requests, and system change requests.
• Provide host-based security system (HBSS) client management.
• Implement and maintain anti-virus and malicious code protection for all information systems using government-provided software.
• Provide and / or facilitate the distribution and installation of security patches.
• Provide or coordinate security vulnerability scanning and reporting using government-provided applications.
• Support scheduled Command Cyber Readiness Inspections (CCRI), and Security Assessment Visits (SAV).
• Provide onsite incident management during regular working hours for NIPRNET, SIPRNET, JWICS, Special Access Program (SAP) Systems, and equipment.
• Develop performance measurements (goals / metrics / reports) utilizing the current RMF tracking Systems (eMASS and XACTA) and facilitate a feedback system to team members and the customer to enhance the quality of security support delivered.
• Utilize ITIL best practices to enhance and optimize the services provided to end users.
• Participate in implementing an enterprise knowledge base and knowledge management best practices for RMF and ISSO responsibilities.
• Coordinate with governmentsupport teams to request scans, patching, and STIG compliance and institute continuous improvement initiatives and methods.
• Resolve customer issues effectively or escalate them to appropriate support tiers.
• Assist in the professional and technical development of the team, especially for RMF topics.
• In addition, the contractor may be required to provide surge support after regular working hours, including weekends and holidays, as approved by the COR.

Requirements :

• DoD TOP SECRET w / SCI Eligible security clearance
• Proven analytical and problem-solving abilities.
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
• Good written, oral, and interpersonal communication skills.
• Ability to conduct research into PC and software issues and products as required.
• Ability to present ideas in business-friendly and user-friendly language.
• Highly self-motivated and directed.
• Keen attention to detail.
• Team-oriented and skilled in working within a collaborative environment.

Education and Experience :

• Required Education : Bachelor's degree in engineering, Computer Science or other related field
• Required Experience :

8-10 years (with Bachelor's) or 6-8 years (with a Master's) of professional experience supporting DoD or IC RMF activities.

5+ years of experience with ATOs and eMASS. (XACTA preferred)

• 4+ years of experience as an ISSO with tasks of a similar size / scope
• Experience with the following tools :

Security Information and Event Management (SIEM) (i.e., Splunk, Elastic, etc.)

• Network Access Control (NAC) (i.e., Forescout, FortiNAC, Ivanti, etc.)
• Remediation (i.e., ACAS / Tenable)
• Required Certification :

DoD 8570 IAT II certification (e.g., Security+, CND, CCNA-Security, CySA+, GICSP, GSEC, SSCP)

• Preferred Certification :
• DoD8750.01M IAT Level III (one of the following)

CASP+ CE

• CCNP Security
• CISA
• CISSP (or Associate)
• GCED
• GCIH

Company Overview

Agil3 Technology Solutions LLC ("A3T") is a Northern Virginia based, ISO 9001 : 2018, ISO 20000 & ISO 27001 Certified, 8a, Women-Owned (WOSB) and Service-disabled Veteran-Owned (SDVOSB) small business. A recent recipient of the prestigious Washington Technology TOP 50 (ranking #9, and on the list for last 4 years!), A3T is experiencing industry leading recognition and growth. In addition to the CEO's recognition as an "All-Star Entrepreneur", A3T is recognized by Inc Magazine as one of the fastest growing companies in the country, by Vet 50 as Fastest Growing Veteran-Owned Businesses, and is featured in CyberSecurity Ventures / Cybercrime Magazine! "As a go-to Women-Owned Cybersecurity company in US and internationally". As part of our growth, we are looking for YOU to join our growing team.

A3T offers excellent benefits to enhance the work-life balance, including :

• Medical Insurance
• Vision Insurance
• Life Insurance
• Short Term & Long-Term Disability
• 401k Retirement Savings Plan with Company Match
• Paid Holidays
• Paid Time Off (PTO)
• Tuition and Professional Development Assistance
• Parking / Travel Reimbursement (metropolitan areas)

Information System Security Officer Isso • Arlington, VA, United States