CACI International
Information System Security Officer (ISSO)
CACI International, Aberdeen Proving Ground, Maryland, United States,
Information System Security Officer (ISSO)
Job Category: Security
Time Type: Full time
Minimum Clearance Required to Start: Secret
Employee Type: Regular
Percentage of Travel Required: Up to 10%
Type of Travel: Local
What You’ll Get to Do:
Work with internal and external agencies and ensure secure network access is available to US Army C5ISR campus
Oversee the implementation of software patches to maintain the security posture of the organization
Perform all ISSO duties and responsibilities in DODI 8500.01, DODI 8510.01, U.S. Army and organizational policy.
Provide Cyber Security oversight, guidance, and support in support of Assessment and Authorization ( A&A) as required by the Federal Information Security Management Act (FISMA).
Provide recommendations to assist in obtaining ATOs based on RMF experience (SSP and A&A process approvals) IAW established cybersecurity policies and procedures.
Verify package submissions have met the threshold for approval such as: CCIs, SCA-V results, POA&Ms, STIGs, Cyber Security Strategies and System Security Plans (SSPs) and other RMF documentation etc.
Identify, develop (either directly, or in coordination with applicable experts), review and incorporate common artifacts found in an RMF accreditation package such as: system architecture and boundaries, hardware and software lists, risk assessment reports, POA&Ms, data flows, PPSM accounting, and other necessary system, network, and application documentation.
Knowledge and experience identifying, assessing, and documenting compliance against applicable DoD security controls (technical, management, operational), Army regulations, etc., within RMF packages.
Familiarity with the use of vulnerability scanning and assessment tools (e.g., ACAS/Nessus) necessary to identify and document compliance.
Analyze and interpret vulnerability assessment results.
Identify information system risks and possible mitigation measures, documenting these in various risk reports and Plans of Action and Milestones (POA&Ms).
Perform and complete STIG checklists, monitor IAVM compliance, and document and appropriately assess to completion any associated POA&Ms.
Identify, interpret, and evaluate major applications, infrastructure, enclaves, and Enterprise system environments based on proposed accreditation boundaries.
Establish and publish upon approval Cybersecurity policies and Standard Operating Procedures (SOPs) as required.
Maintain and report assess and authorization status and issues in accordance with organizational guidance.
Knowledge and familiarity with populating eMASS and other automated tools.
Knowledge and familiarity with DoD and Army cybersecurity and Information Assurance (IA) regulations, NIST SP, TTPs and other applicable organizational security policies.
Ability to translate technical IS configurations into non-technical documentation.
Ability to manage multiple projects simultaneously.
Strong verbal and written communications and interpersonal skills.
ISSO Duties:
Preliminary assessment of all Cyber Tickets in the CIO Portal (Initial review for accuracy and completeness prior to ISSM review)
eMASS: Review, create and update POA&Ms; import scans and artifacts; complete the PAC Checklist review; fix conflicting controls
Review Quarterly updates from DREN partners
Conducted Quarterly reviews of ATCTS DREN IA users
SA and customer interactions for various issues
Respond to data calls and taskers
Backup ACAS administrator responsibilities: ACAS Reports; CSSP Interrogator Reports; Inactive account enforcement; Quarantine enforcement
EDUCATION AND EXPEREINCE
Requires a bachelor’s degree or equivalent or minimum of 5 years of experience.
SECURITY CLERANCE:
Active Secret clearance with the ability to obtain and maintain a TS/SCI clearance
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
-
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.
An environment of trust.
CACI takes pride in fostering a diverse and accessible culture where every individual feels supported to chart their own path. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.
Your potential is limitless. So is ours.
Learn more about CACI here. (https://careers.caci.com/global/en/life-at-caci)
Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here (https://careers.caci.com/global/en/employee-benefits) .
The proposed salary range for this position is:
$75,200 - 158,100 USD
CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, age, national origin, disability, status as a protected veteran, or any other protected characteristic.
Job Category: Security
Time Type: Full time
Minimum Clearance Required to Start: Secret
Employee Type: Regular
Percentage of Travel Required: Up to 10%
Type of Travel: Local
What You’ll Get to Do:
Work with internal and external agencies and ensure secure network access is available to US Army C5ISR campus
Oversee the implementation of software patches to maintain the security posture of the organization
Perform all ISSO duties and responsibilities in DODI 8500.01, DODI 8510.01, U.S. Army and organizational policy.
Provide Cyber Security oversight, guidance, and support in support of Assessment and Authorization ( A&A) as required by the Federal Information Security Management Act (FISMA).
Provide recommendations to assist in obtaining ATOs based on RMF experience (SSP and A&A process approvals) IAW established cybersecurity policies and procedures.
Verify package submissions have met the threshold for approval such as: CCIs, SCA-V results, POA&Ms, STIGs, Cyber Security Strategies and System Security Plans (SSPs) and other RMF documentation etc.
Identify, develop (either directly, or in coordination with applicable experts), review and incorporate common artifacts found in an RMF accreditation package such as: system architecture and boundaries, hardware and software lists, risk assessment reports, POA&Ms, data flows, PPSM accounting, and other necessary system, network, and application documentation.
Knowledge and experience identifying, assessing, and documenting compliance against applicable DoD security controls (technical, management, operational), Army regulations, etc., within RMF packages.
Familiarity with the use of vulnerability scanning and assessment tools (e.g., ACAS/Nessus) necessary to identify and document compliance.
Analyze and interpret vulnerability assessment results.
Identify information system risks and possible mitigation measures, documenting these in various risk reports and Plans of Action and Milestones (POA&Ms).
Perform and complete STIG checklists, monitor IAVM compliance, and document and appropriately assess to completion any associated POA&Ms.
Identify, interpret, and evaluate major applications, infrastructure, enclaves, and Enterprise system environments based on proposed accreditation boundaries.
Establish and publish upon approval Cybersecurity policies and Standard Operating Procedures (SOPs) as required.
Maintain and report assess and authorization status and issues in accordance with organizational guidance.
Knowledge and familiarity with populating eMASS and other automated tools.
Knowledge and familiarity with DoD and Army cybersecurity and Information Assurance (IA) regulations, NIST SP, TTPs and other applicable organizational security policies.
Ability to translate technical IS configurations into non-technical documentation.
Ability to manage multiple projects simultaneously.
Strong verbal and written communications and interpersonal skills.
ISSO Duties:
Preliminary assessment of all Cyber Tickets in the CIO Portal (Initial review for accuracy and completeness prior to ISSM review)
eMASS: Review, create and update POA&Ms; import scans and artifacts; complete the PAC Checklist review; fix conflicting controls
Review Quarterly updates from DREN partners
Conducted Quarterly reviews of ATCTS DREN IA users
SA and customer interactions for various issues
Respond to data calls and taskers
Backup ACAS administrator responsibilities: ACAS Reports; CSSP Interrogator Reports; Inactive account enforcement; Quarantine enforcement
EDUCATION AND EXPEREINCE
Requires a bachelor’s degree or equivalent or minimum of 5 years of experience.
SECURITY CLERANCE:
Active Secret clearance with the ability to obtain and maintain a TS/SCI clearance
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
-
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.
An environment of trust.
CACI takes pride in fostering a diverse and accessible culture where every individual feels supported to chart their own path. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.
Your potential is limitless. So is ours.
Learn more about CACI here. (https://careers.caci.com/global/en/life-at-caci)
Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here (https://careers.caci.com/global/en/employee-benefits) .
The proposed salary range for this position is:
$75,200 - 158,100 USD
CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, age, national origin, disability, status as a protected veteran, or any other protected characteristic.