Provide on-site Test & Evaluation (T&E) Information System Security Officer (ISSO) support to our Navy customer.
Essential Job Functions:
Responsible for complete lifecycle maintenance of F/A-18 and EA-18G accreditations assigned without supervision. Ability to coordinate completion of every step of the DoD implementation of the Risk Management Framework for assigned accreditation(s).Participate in Scaled Agile Framework (SAFe) by working directly with Product Owners, Scrum Masters and Leadership personnel.
Initiate requests for temporary and permanent exception, deviations, or waivers to IA/C requirements. Support appropriate leadership or Authorizing Official of changes affecting the IA/C posture of the organization and its programs. Assure successful implementation and functionality of security requirements and appropriate IT policies and procedures that are consistent with the organizations mission and goals.
Support Cybersecurity accreditation of unique information systems including integration with embedded IT, tactical equipment and avionics. Support and/or implement policies and procedures to ensure protection of critical infrastructure (as appropriate).Ensure plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections (RMF controls, JSIG Rev 4, SSP & POA&M).Ensure IA/C inspections, tests, and reviews occur and coordinate action throughout the RMF lifecycle.
Ensure that protection and detection capabilities are acquired or developed and are consistent with organization-level IA architecture. Support development efforts to ensure that baseline security safeguards are appropriately installed. Participate in an information security risk assessment during the Security Assessment and Authorization process. Participate in the development or modification of the computer environment IA/C security program plans and requirements.
Prepare, distribute, and maintain plans, instructions, guidance, and standard operating procedures concerning the security of network system(s) operations. Recognize a possible security violation and take appropriate action to report the incident, as required. Support necessary cybersecurity compliance activities (e.g., ensure system security configuration guidelines are followed, compliance monitoring occurs, etc.).Collect and maintain data needed to meet system IA/C reporting.
Due to the sensitivity of customer related requirements, U.S. Citizenship is required. A Bachelor degree with 5 plus years of relevant experience will also be considered. Will also consider candidates with high school diploma with 13 years of relevant experience or those with an Associate’s degree with 7 years of relevant experience.
Must be able to work onsite - This position is not remote work eligible. Excellent communication skills and able to liaison with outside agencies and ability to work independently and with little supervision. Able to multitask, prioritize, and manage time efficiently overcoming obstacles to reach aggressive project schedules. Possess high moral character and integrity. Ability to obtain and maintain a security clearance for the duration of employment. Security + Certification.
Knowledge of Federal, DoD, and USMC Guidance (DoDD 8500.1, DoDI 8500.2), DITSCAP, DIACAP, NIACAP, NIST 800-53, and Certification Accreditation processes. Experience with general IA/C Tools (SPLUNK/QMULOS) and Continuous Monitoring (CONMON).Knowledge of Risk Management Framework, eMass, ACAS, HBSS, Nessus.