Innovative Management & Technology Services
Senior ISSO (Information Systems Security Officer)
Innovative Management & Technology Services, Washington, District of Columbia, us, 20022
Company Overview:
Join a fast-growing company highly experienced in cyber security, cloud computing, virtualization, big data analytics, and project management! IMTS offers competitive compensation, excellent benefits including tuition reimbursement and employer-contributed 401K, and referral bonuses. We work with the best customers on-site at top government agencies.
Job Title:
Senior ISSO (Information Systems Security Officer)
Primary Location:
Primarily Remote (Washington, DC Metropolitan Area) Clearance:
Public Trust (US Citizen)
Job Responsibilities:
Be knowledgeable of Federal and security regulations when developing functional and technical requirements; serve as a POC for Information System with security issues. Prepare and update reports to ensure compliance with mandated internal and external security reporting requirements, including Federal Information Security Modernization Act (FISMA) and Capital Planning. Coordinate security program and system elements with agency IT Program Managers by evaluating system environments for security requirements and controls including: IT Security Architecture, hardware, software, telecommunications, security trends, and associated threats and vulnerabilities. Manage security controls to ensure confidentiality, integrity, and availability of information. Build security into the system development process and define security specifications to support the acquisition of new systems. Support System Owners or Program Officers on the review of system procurement requests to ensure that security has been considered and included. Adhere to and implement system security controls that ensure the protection of Sensitive but Unclassified (SBU) information using authentication techniques, encryption, firewalls, and access controls. Complete self-assessments. Assist in the A&A process. Create and/or update the SSP for the program. Serve as a key advisor in risk assessments of all systems and mitigate vulnerabilities. Adhere to Continuous Monitoring practices to ensure that security controls are maintained over the life of IT systems. Assist the System Owner in the development, testing, and maintenance of contingency plans, backup, and storage procedures. Document all procedures according to AmeriCorps standards. Audit and monitor application, system, and security logs for security threats, vulnerabilities, and suspicious activities; report suspicious activities to the agency Incident coordinator. Monitor and coordinate patch management and scanning techniques for all unit systems; participate in identification and mitigation of all system vulnerabilities. Support and facilitate the security awareness, training, and education program. Assist the Information System Security Manager (ISSM), or CISO in any other security-related duties, as required.
Required Qualifications:
Must be able to effectively quantify specific, detailed information for their recommendations in written and verbal formats. A versatile understanding of Information Technology (IT) and Cybersecurity capabilities. A working understanding of technology integration with physical, virtual, and cloud-based solutions. Strong verbal and written communications skills to facilitate clear and concise delivery statuses on multiple, concurrent activities. The ability to perform contract analysis, schedule reviews, and cost estimations (i.e., Service Portfolio Management). Attention to detail. The ability to prepare program plans, contract cost-analysis, contract management; to include budget and schedule development. Experience with project management tools. Experience developing policies, procedures, and work instructions (Preferred).
Education:
Bachelor's degree in an IT-related field
Preferred Certifications:
PMP or a minimum of 10 years of experience (Security clearance not required).
IMTS is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.
#J-18808-Ljbffr
Job Title:
Senior ISSO (Information Systems Security Officer)
Primary Location:
Primarily Remote (Washington, DC Metropolitan Area) Clearance:
Public Trust (US Citizen)
Job Responsibilities:
Be knowledgeable of Federal and security regulations when developing functional and technical requirements; serve as a POC for Information System with security issues. Prepare and update reports to ensure compliance with mandated internal and external security reporting requirements, including Federal Information Security Modernization Act (FISMA) and Capital Planning. Coordinate security program and system elements with agency IT Program Managers by evaluating system environments for security requirements and controls including: IT Security Architecture, hardware, software, telecommunications, security trends, and associated threats and vulnerabilities. Manage security controls to ensure confidentiality, integrity, and availability of information. Build security into the system development process and define security specifications to support the acquisition of new systems. Support System Owners or Program Officers on the review of system procurement requests to ensure that security has been considered and included. Adhere to and implement system security controls that ensure the protection of Sensitive but Unclassified (SBU) information using authentication techniques, encryption, firewalls, and access controls. Complete self-assessments. Assist in the A&A process. Create and/or update the SSP for the program. Serve as a key advisor in risk assessments of all systems and mitigate vulnerabilities. Adhere to Continuous Monitoring practices to ensure that security controls are maintained over the life of IT systems. Assist the System Owner in the development, testing, and maintenance of contingency plans, backup, and storage procedures. Document all procedures according to AmeriCorps standards. Audit and monitor application, system, and security logs for security threats, vulnerabilities, and suspicious activities; report suspicious activities to the agency Incident coordinator. Monitor and coordinate patch management and scanning techniques for all unit systems; participate in identification and mitigation of all system vulnerabilities. Support and facilitate the security awareness, training, and education program. Assist the Information System Security Manager (ISSM), or CISO in any other security-related duties, as required.
Required Qualifications:
Must be able to effectively quantify specific, detailed information for their recommendations in written and verbal formats. A versatile understanding of Information Technology (IT) and Cybersecurity capabilities. A working understanding of technology integration with physical, virtual, and cloud-based solutions. Strong verbal and written communications skills to facilitate clear and concise delivery statuses on multiple, concurrent activities. The ability to perform contract analysis, schedule reviews, and cost estimations (i.e., Service Portfolio Management). Attention to detail. The ability to prepare program plans, contract cost-analysis, contract management; to include budget and schedule development. Experience with project management tools. Experience developing policies, procedures, and work instructions (Preferred).
Education:
Bachelor's degree in an IT-related field
Preferred Certifications:
PMP or a minimum of 10 years of experience (Security clearance not required).
IMTS is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.
#J-18808-Ljbffr