Information Systems Security Officer

2 weeks ago

Arlington, VA, United States Apavo Corporation Full time
Job Title: Information System Security Officer (ISSO)

Location: On-Site in Arlington, VA

Department: Cyber Security Services

Reports To: Management

FLSA Status: Full Time/Non-exempt

Description

Apavo is at the forefront of cybersecurity, providing services to military, defense, and critical infrastructure industries. Joining the Apavo team means becoming part of a company rooted in the principles of quality, and communication. We value positive, candid interactions and the belief that everyone has valuable contributions to make. Apavo stands out for its commitment to a work-life balance and fostering a growth mindset among all team members. If you are looking to make a meaningful impact in the cybersecurity world while growing professionally in a supportive environment, Apavo is the place for you.

Job Purpose

The Information System Security Officer is responsible for supporting the Information System Security Manager. The ISSO will support a critical mission within the DOD and intelligence community. This includes advising on technical matters to maintain the overall security posture of the systems. This includes input to the ISSM on the cybersecurity programs include architecture, requirements, objectives, policies, personnel, and processes and procedures. Additionally, the ISSO will have oversight to ensure the continuous monitoring of systems within their purview to ensure compliance with cybersecurity policies.

Duties & Responsibilities

ISSO responsibilities include, but are not limited to:
  • Supporting the development and maintenance of the organizational or system-level cybersecurity program that includes cybersecurity architecture, requirements, objectives and policies, cybersecurity personnel, and cybersecurity processes and procedures.
  • Ensuring stakeholders are properly identified and information system status and RMF activity requirements in order to establish accountability, access approvals, and special handling requirements.
  • Maintaining the status of artifacts and repositories for system-level cybersecurity-related documentation.
  • Ensure proper appointments IAW RMF 800-37 guidance ensure the established cybersecurity policies and procedures are being followed in accordance with formally established roles.
  • Monitor compliance with cybersecurity policy, as appropriate, and review the results of such monitoring.
  • Ensure that cybersecurity inspections, tests, and reviews are synchronized and coordinated.
  • Ensure implementation of security measures and procedures, including reporting incidents to the AO and appropriate reporting chains and coordinating system-level responses to unauthorized disclosures for classified information or for CUI, respectively.
  • Ensure that the handling of possible or actual data spills of classified information resident in systems, are conducted.
  • Ensure that cybersecurity-related events or configuration changes that may impact DoD systems authorization or security posture are formally reported to the AO and other affected parties, such as IOs and stewards and AOs of interconnected DoD systems.
  • Ensure the secure configuration and approval of IT below the system level (i.e., products and IT services) in accordance with applicable guidance prior to acceptance into or connection to a DoD system.
  • Ensures all users have the requisite security clearances and access authorization and are aware of their cybersecurity responsibilities for DoD systems under their purview before being granted access to those systems.
  • In coordination with the ISSM, initiates protective or corrective measures to address a discovered cybersecurity incident or vulnerability and ensures a process exists for authorized users to report all cybersecurity-related events, potential threats and vulnerabilities to the ISSO.
  • Update all DoD systems cybersecurity-related documentation and ensure these documents are available to properly authorized individuals.
  • The ISSO is expected to have additional duties as assigned in support of corporate cyber security services. Additional details are reviewed in accordance with company policies.
Other

This is typical office or administrative work, and there is no exposure to adverse environmental conditions.

This position requires sedentary work. Sedentary work is defined as: Exerting up to 10 pounds of force occasionally and/or a negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects, including the human body. Sedentary work involves sitting most of the time. Jobs are sedentary if walking and standing are required only occasionally and all other sedentary criteria are met.

Apavo Corporation provides equal employment opportunities to all applicants and employees and strictly prohibits any type of harassment or discrimination in regards to race, religion, age, color, sex, disability status, national origin, genetics, sexual orientation, protected veteran status, gender expression, gender identity, or any other characteristic protected under federal, state, and/or local laws.

Consistent with the Americans with Disabilities Act (ADA), it is the policy of Apavo Corporation to provide reasonable accommodation when requested by a qualified applicant or employee with a disability, unless such accommodation would cause an undue hardship. The policy regarding requests for reasonable accommodation applies to all aspects of employment, including the application process. If reasonable accommodation is needed, please contact Apavo Human Resources at hr@apavo.com or 571-407-0069

Employment with Apavo Corporation is on an at-will basis, meaning either you or the Company can terminate the employment relationship, at any time, for any or no reason, and with or without cause or notice. As an at-will employee, your employment with Apavo Corporation is not guaranteed for any length of time.

Requirements

Qualifications
  • Bachelors Degree in Computer Science or a related technical discipline
  • Masters Degree preferred.
  • Minimum 8-10 years of experience.
  • Must currently possess an active TS/SCI with the ability to obtain and maintain a CI polygraph.
  • Systems Security Engineering background preferred.
  • Effective communication skills to collaborate with cross-functional teams and stakeholders on implementing security measures organization-wide.
  • Strong analytical skills for identifying system vulnerabilities and documenting control implementation narratives.
  • Knowledge of system artifact requirements in support of a System Security Plan.
  • Familiarity with AWS and Cloud Service Provider requirements for development of System Impact Analysis and Documented Risk Acceptance.
  • Jira and Agile SAFe experience or ability to learn is required.
  • Detail-oriented with the ability to manage multiple tasks and prioritize effectively.
  • IAM III preferred
  • Comprehensive knowledge of RMF activities with ability to articulate to Executive audiences preferred
  • Familiarity with Federal, NIST, DOD and IC security policies.
  • Familiarity with federal regulatory requirements, contractual obligations, and industry standards related to information security. Evaluate adherence to standards such as Privacy, GDPR, and HIPAA

  • Information Systems Security Officer

    6 days ago

    Arlington, VA, United States RIT Solutions, Inc. Full time

    Information Systems Security Officer 5 Days onsite in Arlington, VA Job Description: The Information System Security Officer serves as the primary cybersecurity point of contact for work performed under the contract possessing an in-depth knowledge of federal information system security policy, industry best practices, security control assessments, Plan of...

  • Information System Security Officer

    2 weeks ago

    Arlington, VA, United States Strategic Analysis Full time

    Strategic Analysis, Inc. is seeking a candidate to provide Information Systems Security Officer (ISSO) and technical advisory support. The successful candidate will have expertise in Department of Defense (DOD) compliance standards and a strong familiarity with NIST (National Institute of Standards and Technology) RMF (Risk Management Framework) and the...

  • Information System Security Officer

    2 weeks ago

    Arlington, VA, United States Strategic Analysis Full time

    Strategic Analysis, Inc. is seeking a candidate to provide Information Systems Security Officer (ISSO) and technical advisory support. The successful candidate will have expertise in Department of Defense (DOD) compliance standards and a strong familiarity with NIST (National Institute of Standards and Technology) RMF (Risk Management Framework) and the...

  • Information Systems Security Officer

    2 weeks ago

    Arlington, VA, United States Booz Allen Hamilton Full time

    Job Number: R0225011Information Systems Security Officer The Opportunity: Cyber threats are everywhere, and the constantly evolving nature of these threats can make understanding them seem overwhelming to the Army. In all of this "cyber noise," how can these organizations understand their risks and how to mitigate them? The answer is an information security...

  • Information Systems Security Officer

    2 weeks ago

    Arlington, VA, United States Booz Allen Hamilton Full time

    Job Number: R0225011Information Systems Security Officer The Opportunity: Cyber threats are everywhere, and the constantly evolving nature of these threats can make understanding them seem overwhelming to the Army. In all of this "cyber noise," how can these organizations understand their risks and how to mitigate them? The answer is an information security...

  • Information Systems Security Officer

    1 week ago

    Arlington, VA, United States Booz Allen Hamilton Full time

    Job Number: R0225011Information Systems Security Officer The Opportunity: Cyber threats are everywhere, and the constantly evolving nature of these threats can make understanding them seem overwhelming to the Army. In all of this "cyber noise," how can these organizations understand their risks and how to mitigate them? The answer is an information security...

  • Information System Security Officer

    2 weeks ago

    Arlington, VA, United States LIGHTFEATHER IO LLC Full time

    LightFeather is seeking a highly skilled and detail-oriented Information System Security Officer (ISSO) to join our team, providing critical security oversight and Certification & Accreditation (C&A) support for the CISA Gateway. This role offers the opportunity to support impactful, high-visibility security initiatives within a collaborative environment....

  • Information System Security Officer

    1 week ago

    Arlington, VA, United States LIGHTFEATHER IO LLC Full time

    LightFeather is seeking a highly skilled and detail-oriented Information System Security Officer (ISSO) to join our team, providing critical security oversight and Certification & Accreditation (C&A) support for the CISA Gateway. This role offers the opportunity to support impactful, high-visibility security initiatives within a collaborative environment....

  • Information System Security Officer

    2 days ago

    Arlington, VA, United States Chenega Corporation Full time

    Req ID: 38517 Summary Information System Security Officer (ISSO) Alexandria, VA Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employer's core culture? If so, Chenega Military, Intelligence & Operations Support (MIOS) could be...

  • Information System Security Officer

    4 days ago

    Arlington, VA, United States Chenega Corporation Full time

    Req ID: 38517 Summary Information System Security Officer (ISSO) Alexandria, VA Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employer's core culture? If so, Chenega Military, Intelligence & Operations Support (MIOS) could be...