CACI International Information Systems Security Officer (ISSO) - Senior in National Harbor, Maryland
Information Systems Security Officer (ISSO) - Senior
Job Category: Information Technology
Time Type: Full time
Minimum Clearance Required to Start: None
Employee Type: Regular
Percentage of Travel Required: Up to 10%
Type of Travel: Local
What You’ll Get to Do:
The Information Systems Security Officer (ISSO) shall provide support to the designated Information System Security Officers (ISSO) to ensure customer systems maintain their Authority to Operate (ATO) with a security posture in accordance with DHS 4300A and NIST SP guidance. This support shall include providing IT security assessment and IT security audit functions to ensure FISMA compliance, support in developing and maintaining documentation in support of Certification & Accreditation (C&A) as required by the Federal Information Security Management Act (FISMA); ensuring all C&A and system security documentation is kept up to date; and ensuring systems meet all security requirements mandated by DHS 4300A and DHS Management Directives.
More About the Role:
Work location is one of either Oxon Hill, MD; Stennis, MS; or Chandler, AZ
Prepare all reports and required deliverables, attend client and staff meetings
Train more junior members of the staff in new technologies, current tools (XACTA) and FISMA, DHS 4300, NIST 800 and FIPS requirements
Follow the Information Systems Security Officer (ISSO) Guide, V10, when developing, updating, or reviewing required security artifacts in the Xacta Information Assurance Manager
Ensure proper access controls are implemented for both system access and physical access to data processing facilities
Create, update, and assess compliance of system Authority to Operate (ATO) packages
Provide information security expertise to system development teams throughout the System Engineering Lifecycle process
Ensure Plan of Action & Milestone (POA&M) reports are maintained and that security vulnerabilities are tracked and remediated
Implement and apply technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access.
Maintain network device and information security incident, damage and threat assessment programs
Investigate network device and information security incidents to determine extent of compromise to national security information and automated information systems
Research and maintain proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities, data hiding and network and device security and encryption
Design, develop, or recommend integrated system solutions ensuring proprietary/confidential data and systems are protected in accordance with mandated standards
Configure and validate secure systems, tests security products/systems to detect computer and information security weakness
Generate security architecture documentation and provide critical written and verbal analyses of previously generated security architecture documentation and vulnerability and risk assessments
Design and implement plans of action and milestones to remediate findings from vulnerability and risk assessments
Provide information assurance for digital information, ensuring its confidentiality, integrity, and availability
Grant of authorization to operate IT systems at acceptable levels of risk, monitoring and testing of IT systems for vulnerabilities and indicia of compromise, incident response and remediation, the development of appropriate policy, relevant user security awareness and training, and compliance with applicable government and other external standards
You’ll Bring These Qualifications:
Ability to obtain DOD security clearance
DHS EOD suitability or Current DHS EOD preferred
MS/MA + 10 years of applicable experience or BS/BA + 16 years of applicable experience
At least five years of experience working with FISMA
Demonstrated expertise in SELC, Information Security processes, audits, tools, implementation, FISMA, NIST, IT security
Knowledge of information security best practices, Enterprise Architecture, DHS experience
Experience with Xacta IA manager
These Qualifications Would be Nice to Have:
CAP – Certified Authorization Professional
Previous DHS or DoD experience
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
Company Overview: At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is an Equal Opportunity Employer – Females/Minorities/Protected Veterans/Individuals with Disabilities.
Pay Range: The proposed salary range for this position is $65,300-$134,000. There are a host of factors that can influence final salary including, but not limited to, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, geographic location, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. Employment benefits include health and wellness programs, income protection, paid leave and retirement and savings.