Sr. ISSO (FS Poly)

Sr. ISSO (FS Poly)

Please NOTE:

Full Scope Poly is required for this role.

Senior Information System Security Officer (ISSO)The selected candidate will act as an ISSO for a large software development program which includes software maintenance and development, IT support (Network/Workstation/Server) systems integration and life cycle support, enterprise application development, network engineering, and information systems security (ISS). The candidate will work with other security professionals in developing and implementing strategies to detect and mitigate threats to information systems, protect critical data sets, and provide assessments of system and network vulnerabilities.

Primary Roles and Responsibilities

• Provide support for implementing and enforcing information systems security policies, standards, and methodologies.
• Assist in the evaluation of security solutions to ensure they meet security requirements for processing multiple types of information.
• Assist with the Configuration Management for information system security software, hardware, and firmware.
• Analyze threats and develop and implement best practice methodologies for incident detection, reporting, and vulnerability remediation.
• Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades.
• Evaluate security solutions to ensure they meet security requirements for processing information.
• Maintain operational security posture for information systems.
• Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system/program/enclave.
• Develop and maintain documentation for Certification & Accreditation in accordance with specified policies.
• Develop and update system security plans and other IA documentation.
• Provide support for Information Assurance Vulnerability Alerts (IAVAs) management (initiating IAVA responses and system security scans, completing remediation, extending IAVA patches and security updates to designated sites, etc.)
• Provide CM for security-relevant information system software, hardware, and firmware. Develop system security policy and ensure compliance.
• Administer the user identification and authentication mechanisms of the Information System. Basic Qualifications
• Must have at least 10 years of experience as ISSO working independently, and/or on teams maintaining secure information system operations in isolated, connected and standalone environments.
• Must have at least 5 years of experience using tools to support IAVA management.
• Must have at least 5 years of experience using tools to support the preparation, maintenance, and management of SSPs and other security related documentation.
• Demonstrated knowledge of and experience with several of the following: current security tools; hardware/software security implementation; communication protocols; encryption techniques/tools.
• In-depth experience completing security evaluations of software systems or architectures to ensure they meet security requirements.
• In-depth experience proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies, preferably on a large software or IT program.
• Demonstrated experience performing day-to-day security operations of large, complicated information and information processing systems.
• Must be committed to developing and adhering to best practices.
• Must possess a high level of self-initiative and must be a solutions-oriented team player.
• Must have excellent interpersonal skills. Preferred Qualifications
• Bachelor's degree in a related field and at least 12 years of relevant experience.
• Extensive experience as an Information Systems Security Officer on laVisit the Employer site for more details