Information System Security and Records Officer Position Available In Mobile, Alabama

Information System Security and Records Officer OM Group Inc.

• 2.

8

Mobile, AL Job Details Estimated:

$109K

• $138K a year 2 days ago Qualifications CI/CD Vulnerability assessment Azure Management 5 years DevOps IAM Level

II CISSP

Secret Clearance SQL CompTIA Advanced Security Practitioner NIST standards SharePoint Senior level RMF Identity & access management Full Job Description

INFORMATION SYSTEM SECURITY & RECORDS OFFICER

(ISSO/RM) OM Group, Inc. is hiring an Information System Security and Records Officer to own the entire RMF lifecycle for all Project instances while implementing Army records-management policy, ensuring confidentiality, integrity, availability, and compliant retention of all data. Responsibilities Lead all six RMF phases, keeping eMASS artifacts, POA&Ms, and ATO packages current Interpret and apply DISA STIGs; track

CAT I/II/III

findings through remediation Integrate cybersecurity requirements into every code sprint and perform secure-code reviews and static scans Conduct quarterly vulnerability assessments, incident-response drills, and audit-log reviews; report metrics to the Authorizing Official Map Project data elements to approved records series; configure disposition schedules, metadata fields, and legal-hold workflows Generate monthly reports of records eligible for destruction or transfer to the Army Electronic Archives and maintain immutable audit trails Manage ATCTS records and verify staff completion of DoD Cyber Awareness, OPSEC, HIPAA (as applicable), and 8570 baseline training Coordinate with ACEIT, hosting CSPs, and

USACE G6

on boundary changes, patch windows, contingency planning, and privacy impact assessments Investigate and report any CDI/PII spill or cyber incident within 12 hours, per

DFARS 252.204-7012

Stay current on NARA bulletins, DoDI 5015.02, AR 25-400-2, and DTM 22-001, adjusting export formats and migration plans as needed Qualifications CISSP

• Certified Information Systems Security Professional CASP+
• CompTIA Advanced Security Practitioner CRM
• Certified Records Manager (or equivalent DoD records-management credential) Minimum five years serving as an ISSO and/or Records Manager for a DoD web application with demonstrated eMASS proficiency Deep knowledge of NIST SP 800-53, DoDI 8510.

01, Application Security & Development STIG, and DoDI 5015.02 Experience guiding DevSecOps teams on Azure DevOps or comparable CI/CD pipelines and configuring record disposition in SQL, SharePoint, or Dynamics platforms Excellent briefing skills with the ability to explain risk posture and records-compliance status to technical and executive audiences Active or attainable DoD Secret clearance with favorable NACI and maintenance of IAM Level II currency Competitive compensation Contingent upon award OM Group, Inc. is an Equal Opportunity Employer (EOE) committed to compliance with all applicable federal, state, and local employment laws. We provide employment opportunities without regard to race, color, religion, sex, national origin, disability, veteran status, genetic information, or any other characteristic protected by law. OM Group, Inc. is dedicated to fostering a workplace that is free from unlawful discrimination and retaliation. Our hiring and employment practices are based on merit, ensuring that all individuals have equal opportunities based on their qualifications, experience, and skills. No Third Parties or C2C Solicitation This is a direct-hire position ineligible for third-party partnering. OM Group does not accept unsolicited resumes from third-party recruiters without a signed third-party agreement. Any unsolicited third-party resumes forwarded by recruiters to OM Group or to any of our managers or employees will be considered public information, may be treated as a direct application from the person identified in the resume, and will not be eligible for placement-fee payment to the agency.