Information Systems Security Officer – Lead
District of Columbia, United States of America
Full Time
1 day ago
No Visa Sponsorship
Key skills
Cyber SecurityFirewallsCLeadershipRisk ManagementDecision Making
About this role
Role Overview
- Maintaining the overarching operational security posture and managing the day-to-day security operations of your assigned Information System (IS);
- Developing, reviewing, and maintaining security and authorization documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs);
- Performing vulnerability/risk assessment analyses to support assessment and authorization (A&A);
- Ensuring the implementation and maintenance of security controls in accordance with the SSP and the organization's security policies, standards, and procedures;
- Supporting security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF).
- Providing configuration management (CM) for IS security software, hardware, and firmware, and leading Change Control Board (CCB) meetings; and,
- Providing guidance and security expertise to program leadership.
Requirements
- Experience with and knowledge of Federal DevSecOps frameworks and processes
- CISM and/or CISSP cert is required
- Experience with IS accreditors, policies, and procedures to support Authoriy to Operate (ATO)/Authority to Connect (ATC) decision making and operational practices.
- Experience with RMF, NIST SP 800-53, Security Technical Implementation Guides (STIGs), and/or Security Content Automation Protocol (SCAP) Compliance Checker
- Knowledge of and experience leading the A&A process
- Knowledge of IT security principles and methods (e.g., firewalls, demilitarized zones, encryption).
- Experience in preparing detailed SSPs to achieve ATO objectives.
- Knowledge of new and emerging IT and cybersecurity technologies.
Tech Stack
- Cyber Security
- Firewalls
Benefits
- Competitive salary, paid twice per month
- Best in class medical coverage
- 100% of medical premiums covered by True Zero
- Company wide new business incentive programs
- Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)
- 3 weeks of PTO starting + 11 Paid Holidays Annually
- 401k Program with 100% company match on the first 4%
- Monthly reimbursement of Cell Phone and Home Internet costs
- Paternity/Maternity Leave
- Investment in training and certifications to broaden and deepen your technical skills