NXTKEY CORPORATION
ISSO with TS Clearance
NXTKEY CORPORATION, Washington, District of Columbia, us, 20022
NXTKey Corporation has been delivering Information Technology, Information management, Information Assurance (IA) and cybersecurity solutions to US Federal Government since 2005.
NXTKey Corporation is a 15 year old ISO 9001, ISO 27001, ISO 20000, CMMI Level 3 (SVC) + SSD certified and agile Highly Adaptive Cybersecurity Services (HACS) qualified Woman Owned Small Business (WOSB), that has refined our Information Technology, Information management, Information Assurance (IA) and cybersecurity solutions by supporting highly complex Information Technology (IT) environments at the Department of Justice (DOJ) United States Marshals Service (USMS), Justice Management Division (JMD), Office of Justice Programs (OJP), Federal Prison Industries (FPI) and National Oceanic and Atmospheric Administration (NOAA).
Our depth of experience allows us to provide IT security support for a wide range of IT General Support Systems (GSS) and major applications (MAs) within the Federal Enterprise and following the guidance in the Federal Enterprise Architecture (FEA) and information systems security support services in accordance with OMB Circular A-130, NIST guidelines and standards, as well as other federal policies and regulations.
Job Description
Candidate must possess the following experiences: Experience with Tenable Nessus. Experience with CSAM. Experience with SA&A/ATO. Experience with FISMA. Experience with FedRamp. Responsibilities: Manage the RMF process to include but not limited to Assessment & Authorization (A&A) package submission/maintenance, System Network Approval Process (SNAP) package submissions/maintenance and Configuration Management (CM) services which encompasses the change control board meetings. Maintain the CM process which manages all current and new requirements that affect the enclave in regard to interface, functionality, data storage and manipulation, security, and environment. Conduct comprehensive IT security control assessments on systems identified within the scope of this contract. Provide an assessment on the severity of weaknesses or deficiencies discovered in the information system and its environment of operation and recommend corrective actions and or controls to address identified vulnerabilities. Review the System Security Plan (SSP) prior to initiating the security control assessment. Evaluate threats and vulnerabilities to information systems to ascertain the need for additional safeguards and controls to mitigate vulnerabilities. Review and approve the information system security assessment plan. Ensure security control assessments are completed for each information system. Prepare the final Security Assessment Report (SAR) containing the results and findings from the assessment. Support compliance with RMF controls. Evaluate security control assessment documentation and provide written recommendations for security authorization to the AO. Assemble and submit the security authorization artifacts to the AO. Provide solutions and recommendations to remedy security vulnerabilities. Apply IT security control requirements to address the level of security required. Perform Security Test and Evaluation (ST&E) for each system prior to the assessment phase. Make edits to existing Government documents and prepare briefings as required. Ensure risk management is integrated into the technical, physical and administrative controls throughout the network, system, database, and application lifecycle. Perform IA support services to assist IA Program Managers (PM) and ISSO/ISSMs. Qualifications
Bachelor’s Degree in Computer Science / IT / Engineering. Certifications - CISSP / Security+CE / CASP / CEH / GIAC / Other cybersecurity related. Position open for US Citizens with Top Secret Clearance only. Min. experience with ISSO Role - 3-5 years. Min. experience in Information Systems Security - 5-7 years. Min. experience in Federal Contracts - 7+ years. Additional Information
All your information will be kept confidential according to EEO guidelines.
#J-18808-Ljbffr
Candidate must possess the following experiences: Experience with Tenable Nessus. Experience with CSAM. Experience with SA&A/ATO. Experience with FISMA. Experience with FedRamp. Responsibilities: Manage the RMF process to include but not limited to Assessment & Authorization (A&A) package submission/maintenance, System Network Approval Process (SNAP) package submissions/maintenance and Configuration Management (CM) services which encompasses the change control board meetings. Maintain the CM process which manages all current and new requirements that affect the enclave in regard to interface, functionality, data storage and manipulation, security, and environment. Conduct comprehensive IT security control assessments on systems identified within the scope of this contract. Provide an assessment on the severity of weaknesses or deficiencies discovered in the information system and its environment of operation and recommend corrective actions and or controls to address identified vulnerabilities. Review the System Security Plan (SSP) prior to initiating the security control assessment. Evaluate threats and vulnerabilities to information systems to ascertain the need for additional safeguards and controls to mitigate vulnerabilities. Review and approve the information system security assessment plan. Ensure security control assessments are completed for each information system. Prepare the final Security Assessment Report (SAR) containing the results and findings from the assessment. Support compliance with RMF controls. Evaluate security control assessment documentation and provide written recommendations for security authorization to the AO. Assemble and submit the security authorization artifacts to the AO. Provide solutions and recommendations to remedy security vulnerabilities. Apply IT security control requirements to address the level of security required. Perform Security Test and Evaluation (ST&E) for each system prior to the assessment phase. Make edits to existing Government documents and prepare briefings as required. Ensure risk management is integrated into the technical, physical and administrative controls throughout the network, system, database, and application lifecycle. Perform IA support services to assist IA Program Managers (PM) and ISSO/ISSMs. Qualifications
Bachelor’s Degree in Computer Science / IT / Engineering. Certifications - CISSP / Security+CE / CASP / CEH / GIAC / Other cybersecurity related. Position open for US Citizens with Top Secret Clearance only. Min. experience with ISSO Role - 3-5 years. Min. experience in Information Systems Security - 5-7 years. Min. experience in Federal Contracts - 7+ years. Additional Information
All your information will be kept confidential according to EEO guidelines.
#J-18808-Ljbffr