Logo
Integrated Management Strategies LLC

Information System Security Officer (ISSO)

Integrated Management Strategies LLC, New Orleans, Louisiana, United States, 70123


About Integrated Management Strategies (IMS) LLC

We are a women-owned small business and management consulting firm that provides an array of business and technical services. IMS is headquartered in the Washington, D.C. metropolitan area, with employees across 24 US states.

What We Do

We support the mission critical needs of federal agencies and commercial businesses by leveraging our experience, talent and can-do attitude, and solve their strategic and operational challenges.

How We Do It

We earn our clients' trust through our personalized approach and attention to detail, allowing us to collaborate and solve even the most complex problems.

About the role

Are you ready for your next career adventure? Integrated Management Strategies (IMS), a woman-owned small business specializing in healthcare IT and management consulting, is seeking a highly skilled and experienced Security Specialist to join our team and lead security architecture, planning and operations and assisting our federal client in obtaining Authorization to Operate (ATO) and overall management of their cloud and cyber security requirements. This position requires on site work in New Orleans, LA.

What you'll do

Manage and coordinate with team members to effectively execute tasks to ensure high quality deliverables and timely delivery. Serve as a skilled technical security advisor and security officer to business owners and stakeholders. Develop documentation as the primary author on RMF A&A documents including but not limited to the System Security Plan, Privacy Threshold Analysis, Privacy Impact Assessment, Contingency Plan, Configuration Management Plan, and Incident Response Plan. Implement quality assurance procedures to ensure a high level of quality in all deliverables submitted by the team. Perform and support security operations tasks including vulnerability management, implement role-based access controls, data-masking and analytics, audit log analysis, secure configuration management, etc. Provide tactical and strategic guidance to improve organizational security program Provide security design and impact analysis for enterprise operations and solutions. Aid in various assessment activities including A&A security control assessments. Coordinate and communicate with system stakeholders as required to complete all aspects of the A&A process. Understand and articulate security architecture of systems and how it integrates with the enterprise security stack. Provide security design and security impact analysis on agency systems. Perform both technical and documentation continuous monitoring tasks. Keep abreast of changing audit guidelines, Federal guidance, and regulations. Lead and advise on POA&M remediations and control finding closures using evidential matter or other required closure evidence. Support security controls assessment activities. Proactively identify opportunities to enhance the efficiency and effectiveness of security processes, implementing best practices and lessons learned across security domains. Qualifications

Bachelor's degree in computer science, or related field. Master's degree preferred. 5+ years of technical experience in cybersecurity. 5+ years of experience with Federal certification and accreditation A&A. 5+ years of experience with maintaining IT security policies, processes, and guidance. Professional experience with a solid understanding of incident response, insider threat investigations, forensics, cyber threats, and information security. Experience with applying the NIST Cybersecurity Framework. Experience with Federal Risk and Authorization Management Program (FedRAMP). Proficient understanding of the NIST RMF 800-137 Rev2 processes and the NIST security control set (800-53 Rev4, 800-53 Rev5). Experience with developing and managing continuous monitoring and plans of action and milestones (POA&M). Desired Skills:

Experience working with Cyber Security Assessment and Management (CSAM) tool. USDA security experience. Experience with AWS, Azure and other Cloud service providers. Security Certification: CISSP, CISM, CAP or equivalent certification preferred. Certified in AWS and/or Azure Security Specialty is preferred. What we offer:

In addition to a rewarding career, IMS offers a wide range of benefits to its employees, including:

Generous Paid time off Health/Dental/Vision Insurance 401(k) FSA and many more!

Integrated Management Strategies is an equal opportunity employer that is committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, gender identity, national origin, disability, pregnancy, status as a protected veteran, or any other protected characteristic as outlined by federal, state, or local laws. If you are an individual with a disability and would like to request a reasonable accommodation for the employment process, please email your request to hr@im-strat.com

E-Verify® is a registered trademark of the U.S. Department of Homeland Security. This business uses E-Verify in its hiring practices to achieve a lawful workforce. www.dhs.gov/E-Verify

The salary range provided for this position is a nationwide market range and represents a broad range of salaries for this role across the country. The actual salary rate for this position will be determined by a number of factors, including, scope, complexity, and location of the role; the skills, education, training, credentials, and experience of the candidate, and other conditions of employment.