View Our Website View All Jobs

Information Systems Security Officer (ISSO)

Information Systems Security Officer (ISSO)

The Information Systems Security Officer (ISSO) will provide support extending to all aspects of IT services including: applications; desktop and laptop computers; Wide Area Network (WAN)/Local Area Network (LAN)/Cloud connectivity (secure and non-secure); telecommunications (secure and non-secure); software and hardware acquisition and installation. The ISSO will provides support to the DHS USSS.

Essential Functions:

  • Develops, updates, and maintains standard operating procedures (SOPs) and management directives to support the Information Technology Center (ITC), the Network Security Operations Center (NSOC), and the broader community at DHS USSS headquarters
  • Provides tactical production operations support Security Authorizations and Assessments services
  • Ensure that all Automated Information Systems (AIS) are operated, used, maintained, and disposed of in accordance with internal security policies and practices.
  • Provides strategic guidance and recommendations for strategic planning and improvements to the systems/applications supported by the contractor
  • Enforce security policies and safeguards on all personnel having access to the AIS for which the ISSO has responsibility.
  • Conducts and documents continuous monitoring and scanning of DHS USSS systems
  • Ensure that audit trails are reviewed periodically in accordance with departmental policy and the Security Authorization documentation (e.g., weekly or daily).
  • Ensure that audit records are archived for future reference and audit artifacts are generated as needed.
  • Initiate protective or corrective measures if a security problem is discovered.
  • Report security incidents in accordance with DHS USSS policy to the Authorizing Official (AO) and System Owner (SO) when and AIS is compromised or a suspected compromise has occurred.
  • Determine when time-sensitive system patches identified by the DHS Security Operations Center much be quickly implemented to protect systems.
  • Evaluate known vulnerabilities to ascertain if additional safeguards are needed.
  • Maintain a plan for site security improvements and progress towards meeting the Accreditation/re-accreditation of their respective AIS.
  • Perform all ISSO duties as directed by DHS USSS policy

Qualifications

Required Skill and Experience:

  • A minimum of three (3) years of demonstrated experience in the Information Security (Cybersecurity or Information Assurance) field.
  • Experience with leading and directing the work of others.
  • Demonstrates a proficiency with developing, maintaining and managing Security Assessment and Authorization (SA&A) packages. 
  • Knowledge of information security/risk management standard concepts, practices, and procedures within program management.
  • Experience with developing and managing Plans of Action & Milestones (POA&Ms).
  • A holistic understanding and knowledge of the Risk Management Framework (RMF) as defined by National Institute of Technology (NIST) Special Publication (SP) 800-53 NIST SP 800-53 Rev4, Security and Privacy Controls for Federal Information Systems and Organizations;
  • Demonstrated experience with NIST SP 800-53A Rev4, Assessing Security and Privacy Controls in Federal Information Systems and Organizations
  • Strong problem solving and analysis skills, self-motivated, and able to work and communicate in a team environment.
  • Possession of excellent documentation skills.
  • Possession of excellent oral and written communication skills.
  • Experience conducting Security Control Assessments (SCA)
  • Preferred experience with FedRAMP documentation and package development/review

Education:

  • Bachelor's degree or higher in computer science, Information Technology, Information Security, or similar fields.

Certifications:

  • A minimum of at least one (1) certification much be active relating to information security such as:
    • Certified Information Systems Security Professional (CISSP);
    • GIAC security certification (e.g., GCIH, GWAPT, GPEN, GSLC, etc.)
    • CompTIA Security+
    • CEH

Clearance:

  • Secret or higher'

TISTA is an equal opportunity employer by choice, we do not discriminate against any protected class in any way.  We are proud of our diversity and all veterans are encouraged to apply.  M/F/D/V

Read More

Apply for this position

Required*
Apply with Indeed
Attach resume as .pdf, .doc, or .docx (limit 2MB) or Paste resume

Paste your resume here or Attach resume file

150