Amentum
Information System Security Officer (ISSO)
Amentum, Richmond, Virginia, United States,
Information System Security Officer (ISSO)
Amentum is seeking an
Information System Security Officer (ISSO)
in
Springfield, VA
in support of a Department of Defense (DoD) customer. In this role, you will be responsible for ensuring the required operational security posture is maintained for various DoD information systems. This role requires detailed knowledge and expertise required to manage the security aspects of both networked and stand-alone information system environments and is assigned responsibility for the day-to-day security operations of these systems. This position will require minimal travel, primarily in and around the Springfield, VA area, in support of remote client locations. You will play an active role in monitoring systems and their environment of operation to include developing and maintaining Authorization and Authentication (A&A) Packages.The ISSO responds to the ISSM and must be familiar with the National Institute of Standards and Technology (NIST) publications to include SP 800 37, 800 30, 800 39, 800 137, FIPS 199, 200 and Department of Defense (DoD) security policies.Responsibilities include but are not limited to:Maintain awareness of changes to DoD cybersecurity and other applicable policies and update local policies as needed.Review system security audit logs on standalone and networked systems.Utilize Tenable Nessus scanning tools to identify system vulnerabilities and STIG compliancy. Work with IT to remediate all identified vulnerabilities and deficiencies.Provide required system security training.Perform annual RMF self-inspections for all supported systems.Develop and update (as needed) A&A packages and associated artifacts.Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM/AO/DAO.Ensure systems are operated, maintained, and disposed of in accordance with DoD and local security policies and procedures.Support Information System Incident Response in accordance with the DoD and local Incident Response Plan.Perform duties as Media Custodian.Interface and advise system stakeholders on all system security related matters.Minimum Qualifications:Must have an active Top Secret with SCI eligibility US Government clearance. Note: US Citizenship is required to maintain a Top Secret Clearance.Must have and be current in at least one of the following certifications to meet DoD 8140 for IAM II (CCSP, CCISO, CGRC, CISM, CISSO, CISSP, GSLC or GSEC).At least 2 years previous experience as an ISSO/ISSM or another organizational equivalent.Experience in processing Risk Management Framework (RMF) packages within XACTA.Knowledge using Splunk, Tenable Nessus, and ePO.Familiarization with installing, configuring, maintaining, and troubleshooting operating system platforms such as Windows 10/11 and Windows Server 2019 to include security configuration knowledge of group and local policies. (Preferred).Technical and professional writing expertise; experience with MS Office products.Experience in information security that includes configuration of workstations and servers for proper security settings.Preferred Qualifications:Bachelor’s degree in a Cybersecurity or IT-related field.At least 4 years previous experience as an ISSO/ISSM or another organizational equivalent.Other Requirements:This is a non-remote, fulltime on-site position.Must be able to lift up to 50 pounds on an occasional basis.Minimal travel is required (0-10%).
#J-18808-Ljbffr
Amentum is seeking an
Information System Security Officer (ISSO)
in
Springfield, VA
in support of a Department of Defense (DoD) customer. In this role, you will be responsible for ensuring the required operational security posture is maintained for various DoD information systems. This role requires detailed knowledge and expertise required to manage the security aspects of both networked and stand-alone information system environments and is assigned responsibility for the day-to-day security operations of these systems. This position will require minimal travel, primarily in and around the Springfield, VA area, in support of remote client locations. You will play an active role in monitoring systems and their environment of operation to include developing and maintaining Authorization and Authentication (A&A) Packages.The ISSO responds to the ISSM and must be familiar with the National Institute of Standards and Technology (NIST) publications to include SP 800 37, 800 30, 800 39, 800 137, FIPS 199, 200 and Department of Defense (DoD) security policies.Responsibilities include but are not limited to:Maintain awareness of changes to DoD cybersecurity and other applicable policies and update local policies as needed.Review system security audit logs on standalone and networked systems.Utilize Tenable Nessus scanning tools to identify system vulnerabilities and STIG compliancy. Work with IT to remediate all identified vulnerabilities and deficiencies.Provide required system security training.Perform annual RMF self-inspections for all supported systems.Develop and update (as needed) A&A packages and associated artifacts.Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM/AO/DAO.Ensure systems are operated, maintained, and disposed of in accordance with DoD and local security policies and procedures.Support Information System Incident Response in accordance with the DoD and local Incident Response Plan.Perform duties as Media Custodian.Interface and advise system stakeholders on all system security related matters.Minimum Qualifications:Must have an active Top Secret with SCI eligibility US Government clearance. Note: US Citizenship is required to maintain a Top Secret Clearance.Must have and be current in at least one of the following certifications to meet DoD 8140 for IAM II (CCSP, CCISO, CGRC, CISM, CISSO, CISSP, GSLC or GSEC).At least 2 years previous experience as an ISSO/ISSM or another organizational equivalent.Experience in processing Risk Management Framework (RMF) packages within XACTA.Knowledge using Splunk, Tenable Nessus, and ePO.Familiarization with installing, configuring, maintaining, and troubleshooting operating system platforms such as Windows 10/11 and Windows Server 2019 to include security configuration knowledge of group and local policies. (Preferred).Technical and professional writing expertise; experience with MS Office products.Experience in information security that includes configuration of workstations and servers for proper security settings.Preferred Qualifications:Bachelor’s degree in a Cybersecurity or IT-related field.At least 4 years previous experience as an ISSO/ISSM or another organizational equivalent.Other Requirements:This is a non-remote, fulltime on-site position.Must be able to lift up to 50 pounds on an occasional basis.Minimal travel is required (0-10%).
#J-18808-Ljbffr