Current jobs related to Information Systems Security Officer - Columbia - Nimbus Consulting LLC
-
Information Systems Security Engineer 3
4 weeks ago
Columbia, United States iNovex Information Systems Full timeJob Brief perform, review, technical security assessments, identify points of vulnerability, non-compliance Information Assurance (IA) standards and regulations, and recommend mitigation strategies Job Description We're searching for talented individuals who provide intelligence, engineering, and mission management expertise for the Government. This...
-
Information Systems Security Officer
5 days ago
Columbia, South Carolina, United States American Telephone and Telegraph Company Full time{"Job Title": "Information Systems Security Officer", "Job Description": "Job SummaryWe are seeking an experienced Information Systems Security Officer to support the delivery and management of end-user IT systems. The successful candidate will be responsible for evaluating security solutions, proposing and implementing information systems security policies,...
-
Information Systems Security Officer
1 week ago
Columbia, South Carolina, United States Leidos Holding Full timeAbout the RoleWe are seeking a highly skilled Information Systems Security Officer to join our team at Leidos Holding. As a key member of our security team, you will be responsible for ensuring the confidentiality, integrity, and availability of our information systems and data.Key ResponsibilitiesProvide support to the Leidos Information System Security...
-
Information Systems Security Officer
1 week ago
Columbia, South Carolina, United States Leidos Full timeJob SummaryWe are seeking a highly skilled Information Systems Security Officer to join our team at Leidos. As an ISSO, you will play a critical role in supporting the security of our complex programs and ensuring the confidentiality, integrity, and availability of sensitive information.Key ResponsibilitiesImplement and enforce information systems security...
-
Information Systems Security Officer
1 day ago
Columbia, South Carolina, United States Leidos Holding Full timeJob SummaryWe are seeking an experienced Information Systems Security Officer to join our team at Leidos Holding. As a key member of our security team, you will be responsible for ensuring the confidentiality, integrity, and availability of our information systems and data.Key ResponsibilitiesProvide support to the Leidos Information System Security Manager...
-
Information Systems Security Officer
5 days ago
Columbia, South Carolina, United States Leidos Holding Full timeJob SummaryWe are seeking a highly skilled Information Systems Security Officer to join our team at Leidos Holding. As an ISSO, you will play a critical role in ensuring the security and integrity of our information systems and programs.Key ResponsibilitiesProvide support for proposing, coordinating, implementing, and enforcing information systems security...
-
Information Systems Security Officer
6 days ago
Columbia, South Carolina, United States Jacobs Engineering Group Inc Full timeJob DescriptionAs an Information Systems Security Officer at Jacobs Engineering Group Inc, you will play a critical role in ensuring the security and integrity of our information systems. This is a challenging and rewarding position that requires a strong understanding of security principles and practices.Your Impact:You will assist the technical team in...
-
Information Systems Security Officer
1 week ago
Columbia, South Carolina, United States Leidos Holding Full timeJob SummaryWe are seeking a highly skilled Information Systems Security Officer to join our team at Leidos Holding. As an ISSO, you will play a critical role in supporting the security of our information systems and ensuring compliance with relevant regulations and standards.Key ResponsibilitiesProvide support to senior ISSOs in implementing and enforcing...
-
Information Systems Security Officer
2 days ago
columbia, United States The Josef Group Inc. Full timeInformation Systems Security OfficerClearance Required: TS/SCI with FS PolyAs the ISSO, you will serve on a team responsible for the Authorization and Assessment process under the Risk Management Framework for new and existing information systems and will be expected to maintain Authority to Operate compliance for all assigned...
-
Information Systems Security Officer
2 days ago
Columbia, United States The Josef Group Inc. Full timeInformation Systems Security OfficerClearance Required: TS/SCI with FS PolyAs the ISSO, you will serve on a team responsible for the Authorization and Assessment process under the Risk Management Framework for new and existing information systems and will be expected to maintain Authority to Operate compliance for all assigned...
-
Columbia, United States Information Management Group Full timeDescription: The Information Systems Security Engineer shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non–compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies. Validates and verifies system security requirements...
-
Information Systems Security Officer
2 months ago
Columbia, United States Belay Technologies Full timeJob DescriptionJob DescriptionBelay Technologies has been voted Baltimore Business Journal's (BBJ) Best Places to Work 2019, runner up in 2020 and a finalist in 2021! Belay Technologies is seeking a Information Systems Security Officer to join our intel team. The candidate will provide support for a program, organization, system, or enclave's...
-
Information Systems Security Officer
2 weeks ago
Columbia, United States Jacobs Full timeYour Impact:In support of a DISA prototyping effort, the Intel and Cyber Division is assembling a team of network engineers, systems engineers, Unified Communications Engineers, and Integration Engineers, change management specialists, information assurance professionals, and procurement personnel knowledgeable in SCRM processes to support a program that...
-
Information Systems Security Specialist
2 days ago
Columbia, South Carolina, United States Leidos Full timeJob Title: Information Systems Security OfficerWe are seeking a highly skilled Information Systems Security Officer to join our team at Leidos. As an ISSO, you will play a critical role in maintaining the security posture of our information systems and ensuring compliance with relevant regulations and standards.Key Responsibilities:Provide support to the...
-
Information Systems Security Specialist
1 week ago
Columbia, South Carolina, United States American Telephone and Telegraph Company Full timeJob SummaryWe are seeking an experienced Information Systems Security Officer to support the delivery and management of end-user IT systems. The successful candidate will be responsible for evaluating security solutions, proposing and implementing information systems security policies, and maintaining operational security posture.Key ResponsibilitiesEvaluate...
-
Information Systems Security Specialist
1 week ago
Columbia, South Carolina, United States C2 Technology Solutions Full timeC2 Technology Solutions is a leading provider of performance-driven consulting services to government and commercial clients. Our success is built on the growth of our team members, who enjoy a competitive compensation package with outstanding benefits and career development opportunities. We are currently seeking an Information Systems Security Officer to...
-
Information Systems Security Specialist
6 days ago
Columbia, Maryland, United States Kaizen Approach Full timeAbout the RoleWe are seeking a highly skilled Information Systems Security Officer (ISSO) to join our team at Kaizen Approach. As an ISSO, you will play a critical role in maintaining the operational security posture of our information systems.Key ResponsibilitiesEvaluate security solutions to ensure they meet program security requirements for processing...
-
Information Systems Security Specialist
1 week ago
Columbia, South Carolina, United States Applied Insight Full timeAbout the RoleWe are seeking a highly skilled Information Systems Security Officer to join our team at Applied Insight. As an ISSO, you will play a critical role in ensuring the security and integrity of our information systems.Key ResponsibilitiesProvide support for proposing, coordinating, implementing, and enforcing information systems security policies,...
-
Information Systems Security Specialist
2 days ago
Columbia, South Carolina, United States Applied Insight Full timeAbout the RoleWe are seeking an experienced Information Systems Security Officer to join our team at Applied Insight. As a key member of our organization, you will play a critical role in ensuring the security and integrity of our information systems.Key ResponsibilitiesProvide support for proposing, coordinating, implementing, and enforcing information...
-
Information Systems Security Specialist
5 days ago
Columbia, South Carolina, United States Jacobs Full timeYour Impact:In support of a DISA prototyping effort, the Intel and Cyber Division is assembling a team of network engineers, systems engineers, Unified Communications Engineers, and Integration Engineers, change management specialists, information assurance professionals, and procurement personnel knowledgeable in SCRM processes to support a program that...
Information Systems Security Officer
4 months ago
**About Nimbus**:
Nimbus is a consulting firm and strategic information technology (IT) advisor with an objective approach to overcoming complex technical challenges and an understanding of unique challenges in working in the government space. Nimbus is focused on promoting efficient and cost-effective IT solutions for local, state, and federal governments that align with our core values, reduce risk, and result in a positive Return on Investment (ROI) for the constituents of our clients.
**Position Description**:
ISSOs are responsible for overseeing the security and privacy posture of the system(s) entrusted to their care, coordinating all information system risk management and information privacy activities, and acting as the Business Owner’s “go-to person” for security questions and needs.
The ISSO role at CMS is to be responsible for both technical and business evaluations for securing information and systems. The role requires the skills necessary to evaluate technical solutions from an information security perspective and to determine the business risks in order to justify decisions to both the Business Owner and the technical support staff.
The CMS Information Systems Security and Privacy Policy (IS2P2) and the HHS Information Systems Security and Privacy Policy (IS2P) contain the duties and responsibilities of the ISSO role (IS2P section 19, IS2P2 section 3.4.7).
**Your duties and responsibilities include**:
- Maintaining an inventory of program critical assets and coordinating enterprise identification of each.
- Determining the relative importance of each asset in the inventory and assessing risks to the most important.
- Provides support to the Government ISSO Team. CMS utilizes National Institute of Standards and Technology (NIST) Special Publication (SP) 800-37, NIST 800-35, and the security requirements of the CMS Information Security Acceptable Risk Safeguards (ARS) and CMS Minimum Security Requirements (CMSR), as well as the procedures and standards of the Risk Management Handbook (RMH).
- CMS requires ISSO support to ensure ARS controls are appropriate to the system based on the FIPS 199 security categorization and assist the System Owner (SO), Information Owner/Business Owner (IO/BO), and CMS CISO in capturing all system weaknesses in the Plan of Action and Milestone (POA&M).
- ISSO support may include scheduling/coordinating Security Control Assessments (SCA) and/or supporting the assessment and interview processes.
- Develop Authority to Operate (ATO) packages and risk Acceptance documents and participate in the TRB representing a particular program from a security perspective. Maintain and/or update POA&M and be involved with incident handling procedures for PHI/PII and/or security breaches. Experience with Security in an Agile Development Life Cycle and Amazon Cloud Services (FEDRAMP) is beneficial. CISSP certification is beneficial but not required.
- Gain a deep understanding of each system supported, including Architecture, System components, Data flow, interfaces, users, and stakeholders and how it supports the
customer’s mission.
- Schedule/Coordinate Security Control Assessments (SCA).
- Maintain a strong security and privacy posture for their assigned system(s).
- Serve as principal advisor to the System Owner (SO), Business Owner (BO), and the Chief Information Security Officer (CISO) on all system security and privacy matters.
- Complete the security categorization for the FISMA system using the CFACTS tool.
- Complete and maintain the System Security and Privacy Plan using the CFACTS tool.
- Develop, document, and maintain an inventory of hardware and software components within the FISMA system’s authorization boundary.
- Coordinate the development of a Contingency Plan and ensure the plan is tested and maintained accordingly.
- Coordinate with the Data Guardian, Senior Information Security Officer (SISO), Business Owner, and Cyber Risk Advisor (CRA) to identify the types of information processed, assign the appropriate security categorizations to the information systems, determine the information security and privacy impacts, and manage information security and privacy risk.
- Experience with Security in an Agile Development Life Cycle and Amazon Cloud Services (FEDRAMP) beneficial.
- Maintain primary responsibility for the actions and activities associated with the FISMA system receiving and maintaining an Authority to Operate (ATO).
- Report and manage IT Security and Privacy Incidents in accordance with the Risk Management Handbook (RMH) and other applicable federal guidance
- Support the security assessment, develop ATO packages and risk Acceptance documents, and participate in Technical Review Boards (TRB) representing a particular program from a security perspective.
- Ensure appropriate treatment of risk, compliance, and assurance from internal and external perspectives.
- Oversee, evaluate, and support the documentation, validation, and accreditation p
