Information System Security Officer

ASRC Federal is a leading government contractor furthering missions in space, public health and defense. As an Alaska Native owned corporation, our work helps secure an enduring future for our shareholders. Join our team and discover why we are a top veteran employer and Certified Great Place to Work

ASRC Federal has an exciting opportunity for an Information System Security Officer (ISSO in) in Dayton, Ohio. Our desire is to build a team of highly qualified professionals that will provide expertise in Cybersecurity, Cloud, and Systems Engineering, who will support the development and sustainment of unique secure enclaves at the edge, that provide enterprise services and cyber network defense capabilities to customers across the DoD. This team will provide engineering expertise using technologies such as ePO, Splunk, ACAS, Azure Automation, STIG/SCAP, and other enterprise capabilities. The ISSO will have an active role in monitoring a system and its environment of operation to include developing and updating a System Security Plan, managing and controlling changes to the system, and assessing the security impact.

Responsibilities:

• Maintain the operational security posture of systems.

• Monitor systems and environments for security compliance.

• Develop and update System Security Plans (SSPs).

• Manage and control system changes and assess their security impact.

• Handle physical, personnel, and environmental security.

• Conduct incident response and security awareness training.

• Assist the ISSM and assume ISSM duties when necessary.

• Assist the ISSM in meeting their duties and responsibilities. The ISSO shall assume ISSM responsibilities in the absence of the ISSM;

• Ensure systems are operated, maintained, and disposed of in accordance with security policies and procedures as outlined in the security authorization package;

• Maintain equivalent IAM Level 2 certifications based off of DoD 8140 standard;

• Ensure all users have the requisite security clearances, authorization, need-to-know, and are aware of their security responsibilities before granting access to the IS;

• Report all security-related incidents to the ISSM

• Conduct periodic reviews of information systems to ensure compliance with the security authorization package;

• Serve as member of the CCB, if designated by the ISSM;

• Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM and AO/DAO prior to the change;

• Formally notify the ISSM and AO/DAO when changes occur that might affect system authorization;

• Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly;

• Ensure all IS security-related documentation is current and accessible to properly authorized individuals; and

• Ensure audit records are collected, reviewed, and documented (to include any anomalies).

• Participate in joint agile backlog planning and provide feedback to the software development team and infrastructure teams around high to medium risk items that require information system owner approval.

Responsibilities:

• Advanced technical competency and experience in one or more of the following areas: Active Directory Domain Services, Active Directory Federated Services, Active Directory Certificate Services, Windows Server Update Services, ePO, Splunk, STIG/SCAP, YUM, ACAS Automation, and Azure Monitor / Log Analytics.

• Maintain equivalent IAM Level 2 certifications based off of DoD 8140 standard

• 5+ years related experience in SCI/SAP environments.

• Bachelor's degree in computer science, Engineering, Finance, Business, or relatedfield

• 5-8 years demonstrated performance in related technology

• Top Secret w/ SCI eligibility

• Other duties as assigned

We invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefits packages. Benefits offered may include health care, dental, vision, life insurance; 401(k); education assistance; paid time off including PTO, holidays, and any other paid leave required by law.

EEO Statement

ASRC Federal and its Subsidiaries are Equal Opportunity employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.

Job Details

Job Family Information Technology

Job Function Information Security

Pay Type Salary