POSITION: Information System Security Officer (ISSO) - Full Time Position
LOCATION: Work is located at Navy Business Park Philadelphia – max telework authorized during current Covid 19 safety protocol operations. Some on-site work at NSWCPD site may be required.
Why work at EHS Technologies as an Information Systems Security Officer (ISSO)?
EHS Technologies is a cutting-edge IT, Cyber Security and Engineering Firm dedicated to solving the Department of Defense’s most challenging problems. Join EHS Technologies to make a difference while being a part of a skilled, knowledgeable and mission driven team.
POSITION: Information System Security Officer (ISSO)
GENERAL SUMMARY: Seeking candidates with Risk Management Framework (RMF) Information System Security Officer (ISSO) experience. Primary responsibility is to perform tasks related to Assessment & Authorization (A&A) and cybersecurity to obtain and maintain Authorizations to Operate for US Navy afloat and ashore systems.
PRINCIPAL DUTIES/RESPONSIBILITIES:
Lifecycle cybersecurity support of US Navy systems
Lead the RMF process for assigned programs, organizations, systems, or enclaves
Manage POA&M entries and ensuring vulnerabilities are properly tracked, mitigated, and resolved
Assemble the Security Authorization Package and submit for adjudication
Assess the quality of security control implementation against all requirements in accordance with the approved SLCM strategy
EDUCATION AND EXPERIENCE REQUIREMENTS:
BS degree in Computer Science, Information Technology, Cyber Security, Systems Engineering, Mathematics, or a comparable field or equivalent years of experience.
5+ years’ experience in DoD Assessment and Authorization (A&A)
1+ years’ experience working with the Risk Management Framework (RMF)
SPECIAL REQUIREMENTS:
Successful applicants must either have an active government security clearance or the ability to receive approval upon position acceptance.
Must have a valid US passport or the ability to obtain one upon position acceptance.
DoD 8570-compliant (CompTIA Security+ CE)
CISSP preferred
Ability to obtain OS certification or complete approved related training within 180 days of hire
Prior Information Security System Officer (ISSO) experience a plus.
SKILLS AND ABILITIES:
Essential Skills:
Experience with Risk Management Framework (experience under DoD a plus)
Experience using the Enterprise Mission Assurance Support Service (eMASS)
Experience with Assured Compliance Assessment Solution (ACAS)
Demonstrated efficiency and experience in the following areas:
RMF package development and management, including POA&Ms (mitigation statements), Security Plans, Risk Assessments, architecture diagrams, and hardware/software inventories
NIST 800-53 control validation
EHS Technologies is an Equal Opportunity Employer
Position: Information System Security Officer (ISSO)
|