SciTec
Information Systems Security Officer (ISSO)
SciTec, Boulder, Colorado, United States, 80301
Information Systems Security Officer (ISSO)
SciTec
- The world brings problems; SciTec builds solutions. Our team is committed to delivering cutting-edge advancements for defense, security, and civil affairs. SciTec has been awarded multiple government contracts and is growing our creative team! SciTec, Inc. is a dynamic small business with the mission to deliver advanced sensor data processing technologies and scientific instrumentation capabilities in support of National Security and Defense. We support customers throughout the Department of Defense and U.S. Government in building innovative new tools to deliver unique world-class data exploitation capabilities. Important Notice:
SciTec exclusively works on U.S. government contracts that require U.S. citizenship for all employees. SciTec cannot sponsor or assume sponsorship of employee work visas of any type. Further, U.S. citizenship is a requirement to obtain and keep a security clearance. Applicants that do not meet these requirements will not be considered. SciTec has an immediate opportunity for an Information Systems Security Officer (ISSO) who will assist in developing RMF accreditation packages and maintaining Authorization to Operate (ATO) certifications for networked systems and applications used by the organization. The ISSO will assist in developing information system documentation and providing a designated set of standard controls for the authorization package, including the executive summary, system security plan, privacy plan, security control assessment, privacy control assessment, and any relevant plans of action and milestones. This system certification documentation must comply with DoD and Civilian Agency policy focused on NIST 800-171, NIST 800-53 Security and Privacy Controls, and CMMC. Responsibilities
CMMC application and accreditation duties Developing and implementing continuous monitoring strategies Enhancing company best practices related to the IT security posture Maintain a relationship with our ISSP and other mission partners Other duties as assigned Requirements
2-5 years of relevant experience within information assurance (IA) frameworks, including NIST 800-171, NIST 800-53, and CMMC Experience in NIST SP 800-37, NIST DIACAP, RMF or ICD 503 or other information security frameworks helpful but not required Experience with eMass, ServiceNow and/or XACTA Strong analytical and problem-solving skills Ability to work independently with minimal supervision and manage multiple tasks simultaneously Ability to work well in an organization and coordinate across various groups Maintain system certification packages in a centralized repository, supporting primarily NIST 800-171, NIST 800-53, both DIACAP 8500.2 and Risk Management Framework, Continuous Monitoring and Risk Scoring (CMRS), and DoD Information Technology (IT) Portfolio Repository (DITPR) Manage Plans of Action and Milestones (POA&Ms) and System Controls within the centralized repository Conduct cybersecurity controls assessments in accordance with NIST publications 800-37, 800-53, 800-60, DoDI 8500.01, and others as required Develop, maintain, and evaluate security documentation, including System Security Plan, System Security Authorization Agreements, COOPs, and SOPs Continually evaluate the system security posture and make recommendations to senior staff for correction and implementation plans Demonstrated attention to detail Good verbal and written communication skills Compensation and Benefits SciTec offers a highly competitive salary and benefits package, including: Employee Stock Ownership Plan (ESOP) 3% Fully Vested Company 401K Contribution (no employee contribution required) 100% company paid HSA Medical insurance, with a choice of 2 buy-up options 80% company paid Dental insurance 100% company paid Long-term Disability insurance 100% company paid Hospital Indemnity insurance Voluntary Accident and Critical Illness insurance Short-term Disability insurance Annual Profit-Sharing Plan Discretionary Performance Bonus Generous Paid Time Off, including Holiday, Vacation, and Sick Pay Flexible Work Hours The pay range for this position is $93,000 - $143,000 / year. SciTec considers several factors when extending an offer of employment, including but not limited to the role and associated responsibilities, a candidate's work experience, education/training, and key skills. This is not a guarantee of compensation. SciTec is committed to hiring and retaining a diverse workforce and is proud to be an Equal Opportunity/Affirmative Action employer.
#J-18808-Ljbffr
SciTec
- The world brings problems; SciTec builds solutions. Our team is committed to delivering cutting-edge advancements for defense, security, and civil affairs. SciTec has been awarded multiple government contracts and is growing our creative team! SciTec, Inc. is a dynamic small business with the mission to deliver advanced sensor data processing technologies and scientific instrumentation capabilities in support of National Security and Defense. We support customers throughout the Department of Defense and U.S. Government in building innovative new tools to deliver unique world-class data exploitation capabilities. Important Notice:
SciTec exclusively works on U.S. government contracts that require U.S. citizenship for all employees. SciTec cannot sponsor or assume sponsorship of employee work visas of any type. Further, U.S. citizenship is a requirement to obtain and keep a security clearance. Applicants that do not meet these requirements will not be considered. SciTec has an immediate opportunity for an Information Systems Security Officer (ISSO) who will assist in developing RMF accreditation packages and maintaining Authorization to Operate (ATO) certifications for networked systems and applications used by the organization. The ISSO will assist in developing information system documentation and providing a designated set of standard controls for the authorization package, including the executive summary, system security plan, privacy plan, security control assessment, privacy control assessment, and any relevant plans of action and milestones. This system certification documentation must comply with DoD and Civilian Agency policy focused on NIST 800-171, NIST 800-53 Security and Privacy Controls, and CMMC. Responsibilities
CMMC application and accreditation duties Developing and implementing continuous monitoring strategies Enhancing company best practices related to the IT security posture Maintain a relationship with our ISSP and other mission partners Other duties as assigned Requirements
2-5 years of relevant experience within information assurance (IA) frameworks, including NIST 800-171, NIST 800-53, and CMMC Experience in NIST SP 800-37, NIST DIACAP, RMF or ICD 503 or other information security frameworks helpful but not required Experience with eMass, ServiceNow and/or XACTA Strong analytical and problem-solving skills Ability to work independently with minimal supervision and manage multiple tasks simultaneously Ability to work well in an organization and coordinate across various groups Maintain system certification packages in a centralized repository, supporting primarily NIST 800-171, NIST 800-53, both DIACAP 8500.2 and Risk Management Framework, Continuous Monitoring and Risk Scoring (CMRS), and DoD Information Technology (IT) Portfolio Repository (DITPR) Manage Plans of Action and Milestones (POA&Ms) and System Controls within the centralized repository Conduct cybersecurity controls assessments in accordance with NIST publications 800-37, 800-53, 800-60, DoDI 8500.01, and others as required Develop, maintain, and evaluate security documentation, including System Security Plan, System Security Authorization Agreements, COOPs, and SOPs Continually evaluate the system security posture and make recommendations to senior staff for correction and implementation plans Demonstrated attention to detail Good verbal and written communication skills Compensation and Benefits SciTec offers a highly competitive salary and benefits package, including: Employee Stock Ownership Plan (ESOP) 3% Fully Vested Company 401K Contribution (no employee contribution required) 100% company paid HSA Medical insurance, with a choice of 2 buy-up options 80% company paid Dental insurance 100% company paid Long-term Disability insurance 100% company paid Hospital Indemnity insurance Voluntary Accident and Critical Illness insurance Short-term Disability insurance Annual Profit-Sharing Plan Discretionary Performance Bonus Generous Paid Time Off, including Holiday, Vacation, and Sick Pay Flexible Work Hours The pay range for this position is $93,000 - $143,000 / year. SciTec considers several factors when extending an offer of employment, including but not limited to the role and associated responsibilities, a candidate's work experience, education/training, and key skills. This is not a guarantee of compensation. SciTec is committed to hiring and retaining a diverse workforce and is proud to be an Equal Opportunity/Affirmative Action employer.
#J-18808-Ljbffr