Senior Information Systems Security Officer
2 weeks ago
Overview:
Visit our website at www.beringstraits.com to apply
Equal Opportunity Employer/Veterans/Disabled
SUMMARY
Bering Global Solutions, LLC, a subsidiary of Bering Straits Native Corporation is currently seeking a qualified Senior Information Systems Security Officer for a government client in Washington, DC. The selected individual will guide system owners, designated IT security personnel in the program offices, and other staff in fulfilling Federal Information Security Management Act (FISMA) requirements. The ISSO works to analyze, plan, and execute the work necessary to ensure the confidentiality, integrity and availability of the federal clients IT systems, network, and data through the planning, analysis, development, implementation, maintenance, and enhancement of information systems security programs, policies, procedures and tools.
Responsibilities:ESSENTIAL DUTIES & RESPONSIBILITIES
The Essential Duties and Responsibilities are intended to present a descriptive list of the range of duties performed for this position, and are not intended to reflect all duties performed within the job.
- Plan, develop, review and maintain baselines for clients information system to such as, System Security Plans, Software & Hardware Boundaries Documents and Diagrams, Control Implementation Matrix, Inheritance and Overlay Memos, Security Assessment and Authorization artifacts and ATO packages.
- Lead and facilitate meetings with system owners, executive management, staff, and contract partners and technical personnel to provide IT security guidance, define system boundaries, and establish and maintain information security standards and procedures in compliance with information security and risk management policies, standards, and guidelines.
- Plan, develop, and conduct vulnerability and compliance scans, contingency plan testing, and risk assessment on clients information systems. Analyze results to identify and mitigate risk to IT systems, identify training opportunities, and update and improve information systems documentation in accordance with clients IT security policies and System Security Plan (SSP).
- Participate in internal and external reviews, inspections, Security Assessments and Authorizations and audits to ensure compliance with federal laws, clients security policy as well as FISMA and NIST requirements.
- Provide expert security advice to system development organizations to ensure adequate security controls are included in each system lifecycle phase.
- Lead remediation efforts when security controls are insufficient, weaknesses are identified in network security configurations, and vulnerabilities deviate from clients security policy or federal guidelines by recommending corrective actions to mitigate identified deficiencies and developing POAMs.
- Review and analyze information system audit records for unusual or potentially unauthorized activity. Conduct investigations into activities which are in violation of system and organization security policies.
- Incorporate organizational continuous monitoring solutions into information system operations. Ensure compliance with clients continuous monitoring policies and procedures.
Qualifications:
QUALIFICATIONS - EXPERIENCE, EDUCATION AND CERTIFICATION
To perform this job successfully, an individual must be able to satisfactorily perform each essential duty. The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Required (Minimum) Qualifications
- Basic-level understanding of basic computer and networking technologies:
- TCP/IP stack
- Windows operating systems
- Linux/Unix-based operating systems
- Networking technologies (routing, switching, VLANs, subnets, firewalls)
- Common networking protocols: SSH, SMB, SMTP, FTP/SFTP, HTTP/HTTPS, DNS, etc.
- Common enterprise technologies: Active Directory, Group Policy, VMware vSphere
- Moderate-level understanding of IT security principles, technologies, best practices, and NIST guidance
- Logical Access Control
- PKI and other encryption method
- DISA STIG Security configuration baselines
- Auditing
- Vulnerability discovery and management
- NIST SP 800-53 rev. 4 control
- Must be Certified Information Systems Security Professional (CISSP) Certified
- Excellent communications skills. Ability to communicate with senior management and federal client staff, both technical and non-technical, in a clear and concise manner using proper spelling, punctuation and grammar.
- Mastery of federal IT security laws such as the Federal Information Security Management Act (FISMA), policies, regulations, requirements, Executive Orders and Presidential Decision Directives such as EO 13556, HSPD12, OMB Memos M-06-16, and M-07-16; NIST 800 series, the federal IT security and incident reporting hierarchy.
- Knowledge and experience in categorizing systems per current NIST guidelines, defining system boundaries and identifying minimum and supplementary security controls to protect sensitive and critical IT systems.
- Knowledge and experience with the Risk Management Framework (RMF), Assessment and Authorization (A&A), SSP Development, and conducting audits of security controls.
- Knowledge and experience protecting the confidentiality, integrity and available of sensitive and critical information systems
- Knowledge and experience performing network security vulnerability assessments.
- Knowledge and experience with all areas of the System Development Lifecycle (SDLC) of IT systems.
Knowledge, Skills and Abilities
- Basic-level understanding of common computer and networking technologies:
- TCP/IP stack
- Windows operating systems
- Linux/Unix-based operating systems
- Networking technologies (routing, switching, VLANs, subnets, firewalls)
- Common networking protocols: SSH, SMB, SMTP, FTP/SFTP, HTTP/HTTPS, DNS, etc.
- Common enterprise technologies: Active Directory, Group Policy, VMware vSphere
- Interest in security/hacking culture. Ability to "think like an attacker"
- Certifications of interest:
- Security+
- Certified Authorization Professional (CAP)
- Project Management Professional (PMP)
- Microsoft Certified Solutions Associate (MCSA)
- Red Hat Certified System Administrator (RHCSA)
Preferred
- Technical background: Experience working as any of the following:
- Software application developer
- System administrator
- Network engineer
- IT Helpdesk Tier II or above
- Bachelor's Degree or higher in information technology or information security-related field
- Interest in security/hacking culture. Ability to "think like an attacker"
- Certifications of interest:
- Security+
- CISSP
- Certified Authorization Professional (CAP)
- Microsoft Certified Solutions Associate (MCSA)
- Red Hat Certified System Administrator (RHCSA)
PHYSICAL REQUIREMENTS
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Must maintain a constant state of mental alertness at all times. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Essential and marginal functions may require maintaining physical condition necessary for bending, stooping, sitting, walking or standing for prolonged periods of time; most of time is spent sitting in a comfortable position with frequent opportunity to move about.
DOT COVERED/SAFETY-SENSITIVE ROLE REQUIREMENTS
- This position is not subject to federal requirements regarding Department of Transportation safety-sensitive functions.
WORK ENVIRONMENT
Work Environment characteristics described here are representative of those that must be borne by an employee to successfully perform the essential functions of this job.
Job is performed in an office setting with exposure to computer screens and requires extensive use of a computer, keyboard, mouse and multi-line telephone system. The work described herein is primarily a modern office setting. Occasional travel may be required.
SUPERVISORY RESPONSIBILITIES
- No supervisory responsibilities.
ADDITIONAL QUALIFYING FACTORS
Public Trust or the ability to obtain and maintain a Public Trust clearance. (Applicants selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Accordingly, U.S. Citizenship is required.)
Shareholder Preference. BSNC gives hiring, promotion, training and retention preference to BSNC shareholders, shareholder descendants and shareholder spouses who meet the minimum qualifications for the job.
Bering Straits Native Corporation is an equal opportunity employer. All applicants will receive consideration for employment, without regard to race, color, religion, creed, national origin, gender, or gender-identity, age, marital status, sexual orientation, veteran status, disability, pregnancy or parental status, or any other basis prohibited by law.
Equal Opportunity Employer/Veterans/Disabled
We participate in the E-Verify Employment Verification Program. We are a drug free workplace.
Visit our website at www.beringstraits.com for more details and to apply.
-
Senior Information Systems Security Officer
5 days ago
Washington, United States Information Protection Solutions Full timeJob Description Job Description Information systems security officers (ISSO) research, develop, implement, test and review an organization's information security in order to protect information and prevent unauthorized access. Officers inform users about security measures, explain potential threats, install software, implement security measures and monitor...
-
Senior Information Systems Security Officer
2 months ago
Washington, United States Information Protection Solutions Full timeJob DescriptionJob DescriptionInformation systems security officers (ISSO) research, develop, implement, test and review an organization's information security in order to protect information and prevent unauthorized access. Officers inform users about security measures, explain potential threats, install software, implement security measures and monitor...
-
Information Systems Security Officer
7 hours ago
Washington, United States General Dynamics Information Technology Full timeInformation Systems Security Officer (ISSO) – Active Top Secret / SCI Eligibility Required Seize your opportunity to make a personal impact as a n INFORMATION SYSTEMS SECURITY OFFICER (ISS0) . Join a high optempo , mission critical team in support of a DoD joint service organization at the highest levels of the federal government in the heart of our...
-
Senior Information System Security Officer
5 days ago
Washington, United States Omniscius Consulting Full timeJob Description Job Description We are seeking a highly experienced Senior Information System Security Officer (ISSO) to lead our information security Compliance Branch to support a homeland security customer in Washington, DC. The ideal candidate will have over 10 years of experience in managing complex systems within our Agency, demonstrating a deep...
-
Senior Information System Security Officer
3 days ago
Washington, United States Omniscius Consulting Full timeWe are seeking a highly experienced Senior Information System Security Officer (ISSO) to lead our information security Compliance Branch to support a homeland security customer in Washington, DC. The ideal candidate will have over 10 years of experience in managing complex systems within our Agency, demonstrating a deep understanding of the cybersecurity...
-
Senior Information System Security Officer
1 month ago
Washington, United States Omniscius Consulting Full timeJob DescriptionJob DescriptionWe are seeking a highly experienced Senior Information System Security Officer (ISSO) to lead our information security Compliance Branch to support a homeland security customer in Washington, DC. The ideal candidate will have over 10 years of experience in managing complex systems within our Agency, demonstrating a deep...
-
Information Systems Security Manager/Officer
3 weeks ago
Washington, United States Watershed Security Full timeCOMPANY OVERVIEW Watershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: “To inspire trust and respect with our...
-
Senior Information System Security Officer
5 days ago
Washington, United States Creative Visions Full time**Senior Information System Security Officer** Washington, District of Columbia Minimum Experience **Experienced** Creative Visions is seeking a Sr. Information System Security Officer (ISSO) to support multiple federal agencies through the Continuous Diagnostic& Mitigation (CDM) Program. The CDM Program is a high-profile, high-visibility, cybersecurity...
-
Information Systems Security Manager/Officer
1 month ago
Washington, United States Watershed Security Full timeJob DescriptionJob DescriptionCOMPANY OVERVIEWWatershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: “To inspire trust...
-
Senior Information System Security Officer
3 weeks ago
Washington, United States Creative Visions Full time**Senior Information System Security Officer** Washington, District of Columbia Minimum Experience **Experienced** Creative Visions is seeking a Sr. Information System Security Officer (ISSO) to support multiple federal agencies through the Continuous Diagnostic& Mitigation (CDM) Program. The CDM Program is a high-profile, high-visibility, cybersecurity...
-
Senior Information Systems Security Officer
3 days ago
Washington, United States Bering Straits Native Corporation Full timeOverview Visit our website at www.beringstraits.com to apply! Equal Opportunity Employer/Veterans/Disabled SUMMARY Bering Global Solutions, LLC, a subsidiary of Bering Straits Native Corporation is currently seeking a qualified Senior Information Systems Security Officer for a government client in Washington, DC. The selected individual will guide...
-
Information Systems Security Manager/Officer
3 days ago
Washington DC, United States Watershed Security Full timeCOMPANY OVERVIEW Watershed Security is a Veteran Owned Small Business and a leader in providing quality Cyber Security Services to the Federal Government. Watershed is a great place to work, offering a challenging and respectful work environment. We are growing fast and strive to deliver our vision every day: “To inspire trust and respect with our...
-
Sr. Information System Security Officer
2 days ago
Washington, United States Open Systems Technologies Full timeOpen Systems Technologies Corporation is a leader in the government contracting marketplace, providing Enterprise Security and Cloud Computing solutions to support large organizations. Our capabilities include supplying federal government entities and private businesses with software development, scientific and engineering technical assistance, systems...
-
Information Systems Security Officer
7 days ago
Washington, United States Demand Drive Solutions LLC Full timeJob Title: Information Systems Security Officer (ISSO) Location: Washington, DC Salary : - $110,000 $120,000 / yr Roles and Responsibilities: Services to support IS Security performed by the Senior Cloud Information System Security Officer (ISSO), at a minimum, shall consist of the following activities: Ensure the day-to-day implementation, oversight,...
-
Information System Security Officer
1 day ago
Washington, United States Open Systems Technologies Corporation Full timeOpen Systems Technologies Corporation is a leader in the government contracting marketplace, providing Enterprise Security and Cloud Computing solutions to support large organizations. Our capabilities include supplying federal government entities and private businesses with software development, scientific and engineering technical assistance, systems...
-
Senior Cloud Information System Security Officer
2 weeks ago
Washington, United States Macpower Digital Assets Edge Full timeExecutive Summary: Our client seeks a Cloud Information System Security Officer (ISSO) - Senior Level (TS Required, eligible for SCI) for a role in Washington, DC. Position Description: The program provides support in Cybersecurity and Management to improve a federal customer's Information Assurance (IA) posture. The contract's support functions are IA...
-
Senior Information Systems Security Officer
5 days ago
Washington, United States Bering Straits Native Corporation Full timeOverview Visit our website at www.beringstraits.com to apply! Equal Opportunity Employer/Veterans/Disabled SUMMARY Bering Global Solutions, LLC, a subsidiary of Bering Straits Native Corporation is currently seeking a qualified Information Systems Security Officer for a government client in Washington, DC. The selected candidate will guide system owners,...
-
Information System Security Officer
2 weeks ago
Washington, United States Syntricate Technologies Full timeHello Hope you are doing well, My name is Prahlad Gautam from Syntricate Technologies LLC Your experience is relevant to one of my current openings, if you are available, interested, planning to make change, or know of a friend who might have the required qualification and interest, Role: Cloud Information System Security Officer (ISSO) Location:...
-
Information System Security Officer
2 weeks ago
Washington, United States Zonestra Technology LLc Full timeHello Hope you are doing well, My name is Prahlad Gautam from Zonestra Technologies LLC Your experience is relevant to one of my current openings, if you are available, interested, planning to make change, or know of a friend who might have the required qualification and interest, Role: Cloud Information System Security Officer (ISSO) Location:...
-
DHS Information Systems Security Officer
2 days ago
Washington, United States OneZero Solutions Full timeWe are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technically proficient and technically capable across a comprehensive range of cyber mission areas. OneZero full-time...