Senior Information System Security Officer

**Senior Information System Security Officer**Washington, District of Columbia Minimum Experience **Experienced** Creative Visions is seeking a Sr. Information System Security Officer (ISSO) to support multiple federal agencies through the Continuous Diagnostic& Mitigation (CDM) Program. The CDM Program is a high-profile, high-visibility, cybersecurity modernization and risk management program where you can contribute innovative solutions and consult with many different federal agencies to enhance their Information Assurance (IA) programs and continuous monitoring capabilities.**Responsibilities will include:*** Provide consulting to Agencies on Requests for Service for the design, development, and deployment of Ongoing Assessment, Ongoing Authorization, and other Information Assurance (IA) initiatives* Provide continuous monitoring to enforce client security policy and procedures and create processes that will provide increased visibility to system owners on impacts to the security posture of systems* Ensure system security measures comply with applicable government policies Monitor configuration management changes and assess the impact of modifications and vulnerabilities for each system* Ensure that system security requirements are addressed throughout the project and system lifecycle* Ensure effective controls and processes are in place and working effectively to maintain a strong system security posture.* Perform vulnerability/risk assessment analyses to support Assessment & Authorization (A&A) activities* Develop, maintain, and facilitate the appropriate closure of POA&Ms and facilitate with the* Agency-designated security Point of Contact (PoC)/ISSO any related remediation activities* Understand and monitor operations processes, including but not limited to, the Incident* Response Process and Communications Process, to ensure that they are followed properly at Agencies for applicable CDM solutions and tools* Ensure the development, documentation, and presentation of IS security education, awareness, and training activities for users and others, as appropriate* Provide prompt feedback to CDM Project Management, Engineering and Operations personnel in a timely manner and provide ongoing education on security protocols and procedures**Qualifications and Education/Certification Requirements:*** B.S. in Information Technology or Information Security desired* 5+ years of experience in InfoSec specializing in NIST RMFDHS-specific experience highly desired* DoD 8570 approved baseline certification (s) (i.e., CISSP, CISM) preferred* Experience with DHS Ongoing Authorization Program Framework and use cases preferred* Experience with DHS Continuous Diagnostics and Mitigation(CDM) a plus* Experience with AWS Cloud, Azure Cloud, or Cloud implementations and environments* Extensive knowledge and experience with information security standards, policies and practices NIST SP 800-53 rev4, SP 800-37 rev2, FIPS-199, DHS 4300A.* Demonstrated experience writing information system security documentation (System Security Plans (SSP), Plans of Action and Milestones (POA&Ms), PTAs, PIAs, CMPs, CPs, and IRPs).* Experience using vulnerability assessment tools (NESSUS, AppDetective, etc.), analyzing and interpreting assessment results.* Extensive experience analyzing information technology and system risk in complex environments and articulating results (verbal/reports)to all levels of management* Ability to research and address information security issues as required as an authority on the subject.* FedRAMP experience a plus* Strong understanding of infrastructure technologies and functionalities (e.g., firewalls,* Windows/Linux servers, Active Directory (AD), Splunk, Solarwinds, CyberArk, etc.)* Must be a self-starter and have the ability to think outside of the box to design effective solutions* Must have excellent verbal and written communication skills as this position will interact with senior-level executives.**Security Requirements:*** Must be a US citizen and pass a background investigation.* Able to obtain and maintain a DHS Suitability/Entry on Duty (EOD).* Active Secret or Top Secret clearance desired.Location Washington, District of Columbia Minimum Experience Experienced