ISSO Specialist
2 weeks ago
Job Title: ISSO Specialist
Job Location: Huntsville Alabama 35806 Hybrid (3 days per week onsite)
Onsite Requirements:
- NIST 800-53 / Risk Management Framework (RMF)
- A minimum of 4 years of IT security experience in DoD security experience required.
- AS degree in Information Security, Computer Science, Cybersecurity, Information Technology, Computer Information Systems, or related discipline is required.
Job Description:
Position Scope/Job Functions/Core Responsibilities:
- Work with the ISSM on compliance activities including RMF Authorization of complex information systems.
- Assist in the security configuration and management of collateral classified systems and networks in a variety of traditional and virtual environments including Linux, Unix, Sun, Mac, and Windows
- Assist the ISSM in the development and maintenance of System Security Plans (SSP) and associated artifacts such as the Plan of Action & Milestones (POA&M), Risk Assessment Report, and Continuous Monitoring Strategy
- Confirm plans of actions and milestones (POA&M) or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
- Promote awareness of security issues among management and ensure sound security principles are reflected in the organization's vision and goals.
- Track audit findings and recommendations to ensure that appropriate mitigation actions are taken.
- Utilizing previous RMF experience, recommend resource allocations required to securely operate and maintain an organization's cybersecurity requirements.
- Ensure systems are operated, maintained, and disposed of in accordance with organizational security policies and procedures.
- Collect, analyze, and store system audit records.
- Conduct network, system, and application vulnerability scanning, configuration assessment, and remediation.
- Prepare for and participate in periodic organization compliance assessments.
- Ensure account management documentation is complete and updated
Maintain configuration management documentation (change tracking, maintenance logs, etc.) - Serve as a member of the Configuration Control Board (CCB) as needed
Required:
- Demonstrated understanding of the following security frameworks is required:
- NIST 800-53 / Risk Management Framework (RMF)
- National Industrial Security Program Operating Manual (NISPOM) 32 CFR Part 117
- DCSA Assessment and Authorization Process Manual (DAAPM)
- AS degree in Information Security, Computer Science, Cybersecurity, Information Technology, Computer Information Systems, or related discipline is required. Technical experience, skills, and course work completed towards an Undergraduate Degree, or industry IT certifications may be considered in lieu of education or DoD security experience requirements.
- Possess a DoD 8570.01-M IAM I baseline certification (e.g. CompTIA Security+). The group will consider someone without this certification IF they are willing to obtain it in first 6 months at supplier or candidate's expense.
- Demonstrated experience with vulnerability scanning and auditing tools and processes is required.
- Experience and familiarity with multiple operating systems such as Windows Server 2016 and 2019, Windows 10 and 11, Red Hat Enterprise Linux, Mac, etc.
Desired:
- A minimum of 4 years of IT security experience in DoD Information Security is preferred.
- Technical experience securing networks and systems utilizing DISA STIGs and/or SRGs is highly desired.
- Experience with virtualization technologies, e.g. VMWare ESXi is preferred.
- Knowledge and hands-on experience with Microsoft Active Directory to include configuration of domain setting, managing user accounts and permissions, and effectively deploying Group Policy Objects to secure and customize domain environments
Qualification
Assessment
Must Have
Admin
System Auditing
4 years
Certification
Possess a DoD 8570.01-M IAM I baseline certification
Yes
Degree Level
Associates Degree
Yes
Experience
Regulatory & Compliance
4 years
Government Policy/Regulations
STIGs/SCAP
4 years
Security
Assessing Security Controls (CS105.16)
4 years
Assessment and Authorization
4 years
Authorizing Systems (CS106.16)
4 years
Categorization of the System (CS102.16)
4 years
Continuous Monitoring (CS200.16)
4 years
HBSS
4 years
Implementation of Controls (CS104.16)
4 years
Monitoring Security Controls (CS107.16)
4 years
NIST 800-171
4 years
NIST 800-53
4 years
NIST SP 800-37
4 years
Risk Management Framework (RMF)
4 years
Security Standards, best practices, scanning tools (Nessus, Forte, SonarQube)
4 years
Selecting Security Controls (CS103.16)
4 years
Software Tools
SIEM tools (Splunk, SolarWinds, OpenNMS, Nagios)
4 years
Systems
Active Directory Administration and GPOs
4 years
Virtualization Technologies (VMware, including ESXi and VCenter configuration)
4 years
**This position requires candidates to be eligible to work in the United States, directly for an employer, without sponsorship now or anytime in the future.
This client is a US Federal Government contractor and is legally required to hire US Citizens. US Citizens will only be considered for this role.
Due to the nature of the work, a United States Government Clearance is required to be eligible for the position. **
-
Information System Security Officer ISSO
5 days ago
Huntsville, United States ReLogic Research Full timeJob DescriptionJob DescriptionSalary: ReLogic Research, Inc. seeks a highly-motivated, self-starting individual to join our team! ReLogic's central focus continually promotes a culture that stimulates personal, professional, and intellectual growth while developing elegant solutions to tough problems. We encourage teammates to be self-governing based on...
-
ISSO Specialist
2 weeks ago
Huntsville, United States Softworld Inc Full timeJob Title: ISSO Specialist Job Location: Huntsville Alabama 35806 Hybrid (3 days per week onsite) Onsite Requirements: NIST 800-53 / Risk Management Framework (RMF) A minimum of 4 years of IT security experience in DoD security experience required. AS degree in Information Security, Computer Science, Cybersecurity, Information Technology, Computer...
-
ISSO Specialist
2 weeks ago
Huntsville, AL, United States Softworld Inc Full timeJob Title: ISSO Specialist Job Location: Huntsville Alabama 35806 Hybrid (3 days per week onsite) Onsite Requirements: NIST 800-53 / Risk Management Framework (RMF) A minimum of 4 years of IT security experience in DoD security experience required. AS degree in Information Security, Computer Science, Cybersecurity, Information Technology, Computer...
-
ISSO Specialist
2 weeks ago
Huntsville, United States Softworld Inc Full timeJob Title: ISSO Specialist Job Location: Huntsville Alabama 35806 Hybrid (3 days per week onsite) Onsite Requirements: * NIST 800-53 / Risk Management Framework (RMF) * A minimum of 4 years of IT security experience in DoD security experience required. * AS degree in Information Security, Computer Science, Cybersecurity, Information Technology, Computer...
-
Cybersecurity Specialist
1 month ago
Huntsville, United States JRC Integrated Systems, Inc. Full timeJRC has an immediate opening for a Cybersecurity Specialist - Intermediate to support the Missile Defense Agency (MDA) Information Systems Security Manager (ISSM) and respective systems ISSMs/ISSOs with oversight Authorization & Accreditation activities under the Risk Management Framework (RMF). You will leverage your cybersecurity experience to assist our...
-
Cyber Specialist with Security Clearance
1 month ago
Huntsville, United States TEKsystems co Allegis Group Full time**ACTIVE SECRET CLEARANCE REQUIRED** Top Skills' Details ***10 years of IT experience, with 5 years of dedicated IAM experience. *** 1. Applying Risk Management Framework (RMF) in support of achieving Authorization to Operate (ATO) 2. Perform continuous system monitoring and reporting on the architectures readiness state 3. Provide your SME skills to...
-
Huntsville, United States System High Corporation Full timeDescription Description As a Cybersecurity Specialist I on our team, you will be supporting the Missile Defense Agency (MDA) Information Systems Security Manager (ISSM) and respective systems ISSMs/ISSOs with oversight Authorization & Accreditation activities under the Risk Management Framework (RMF). You will assist our team in reviewing and coordinating...
-
Cybersecurity Specialist
1 month ago
Huntsville, United States System High Corporation Full timeDescription Position Overview As a Cybersecurity Specialist II on our team, you will be supporting a Missile Defense Agency (MDA) Information Systems Security Manager (ISSM) and respective systems ISSMs/ISSOs with oversight Authorization & Accreditation activities under the Risk Management Framework (RMF). You will leverage your cybersecurity experience to...
-
Cybersecurity Specialist
7 days ago
Huntsville, United States System High Corp Full timeJob DetailsJob Location HUNTSVILLE, AL 1 (TEAMS) - Huntsville, AL DescriptionPosition Overview As a Cybersecurity Specialist II on our team, you will be supporting a Missile Defense Agency (MDA) Information Systems Security Manager (ISSM) and respective systems ISSMs/ISSOs with oversight Authorization & Accreditation activities under the Risk Management...
-
IT Systems Engineer
3 days ago
Huntsville, United States Ardent Services Full timeWhy do you need to choose between doing important work and having a fulfilling life? At Ardent, we have both. Ardent employees are committed to solving our customers' most difficult problems-and we are committed to the well-being, personal goals, and professional development of our employee. We are "All In." We put forth our strongest effort possible to get...