Information Systems Security Managers (ISSMs)

ISSO II @ Schriever AFB

February 23, 2020 by Leave a Comment

The ISSO’s primary function is working within Special Access Programs (SAPs) supporting Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense (OSD) and Military Compartments efforts. The position will provide “day-to-day” support for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities.

Performance shall include:

Review, prepare, and update AIS authorization packages
Notify customer when changes occur that might affect AIS authorization
Perform AIS self-inspections, provide security coordination and review of all system test plans
Identify AIS vulnerabilities and implement countermeasures
Represent the customer on various technical review and inspection teams
Conduct security surveys at subordinate facilities and gather pertinent security documentation for inclusion into system authorization packages
Coordinate, prepare, and track AIS inspections, reports, and responses
Maintain AIS security records and prepare Co-Utilization Agreements for network nodes operating in government facilities
Prepare reports on the status of security safeguards applied to computer systems
Ensure AIS and network nodes are operated, maintained, and disposed of in accordance with security policies and practices
Perform ISSO duties in support of in-house and external customers
Assist Department of Defense, National Agency and Contractor organizations with the development of assessment and authorization (A&A) efforts
Review, track, and conduct AIS training
Experience:

4 years related experience
Education:

Bachelor’s degree or equivalent experience (4 years)
Certifications:

Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level 2 within 6 months of the date of hire
Security Clearance:

Current Top Secret Clearance with SCI Eligibility
Eligibility for access to Special Access Program Information
Willingness to submit to a Counterintelligence polygraph
Other Requirements:

Must be familiar with current security policy/manuals Must have the ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners
Working knowledge of Microsoft Office (Word, PowerPoint, and Excel)
Possess a high degree of originality, creativity, initiative requiring minimal supervision
Willingness to travel within the organizational geographic Area of Responsibility (AOR) (note – could be extensive, and will include both air and ground transportation)

PL Consulting, Inc. Dedicated to Cyber Security

A Service Disabled Veteran Owned Small Business

C: 443.880.7716 O: 571.525.2477

https://www.plcinc.us/

Information System Security Officer sunnyvale, CA

April 4, 2019 by Leave a Comment

check out my courses:
http://securitycompliance.thinkific.com

*****
the job in this video:
Job Title: Information Systems Security Officer
Location: Sunnyvale, CA
Duration: 6 Months (Possible extension)

Secret Clearance

Job Description:
Performs system and program auditing to ensure compliance to system security plan.
Conducts risk assessments and provides recommendations for secure implementation and compliance in accordance with government regulations and information assurance/cybersecurity guidelines. Creates, maintains and submits information system security documents and reports to regulatory agencies and leadership.
Assesses and mitigates system security threats/risks throughout the program life cycle; validates system security requirements definition and analysis; establishes system security documentation; assists with the implementation of security procedures; verifies information system security requirements; performs information system certification and accreditation planning, testing, assessing and liaison activities.
Familiar with information system security architectural documentation standards.
Able to apply information assurance / cyber security standards, directives, guidance and policies to an architectural/risk based framework.
Provide architectural / risk based analysis of information assurance / cyber security features and relate existing system to future needs and trends and requirements.

Skills Required
Windows client/server background. Some UNIX/LINUX technical experience, knowledge of OS security requirements and IS (Information Systems) auditing experience.
HBSS and SIPRNet experience required.

Experience Required
Previous ISSO and SIPRNet experience needed.

Education Required
Bachelor or equivalent work experience.

Please provide the following information
Rate Expectation:
Full Name:
Contact No:
Alternate contact (if any):
Email address:
Current Location:
Relocation:
Availability:
Visa status

Kindly share your detailed resume at zoeyw@etalentnetwork.com

If you are qualified and interested in making a change or know of a friend who might have the required qualifications, please call me ASAP at (703) 261-7028 Ext.267, even if we have spoken recently about a different position. If you do respond via e-mail please include a daytime phone number so I can reach you. In considering candidates, time is of the essence, so please respond ASAP. Thank you.

Sincerely yours,
ZoeyWest
E TalentNetwork

Home

8251 Greensboro Drive, Suite 250
McLeanVA
zoeyw@etalentnetwork.com
(703) 261-7028 Ext.267

Security Analyst / Engineer role w/ USDA

January 25, 2016 by Bruce Brown Leave a Comment

Do you happen to be on the job market? If so, this long-term position is in Fort Collins, CO, and relocation is included. We offer a great benefits package (medical/dental/vision/401k/disability/etc.) and also a host of soft benefits (team family outings, holiday gatherings, sporting events, relaxed workstyle & attire, reasonable hours, etc.). The job description is BELOW, and I’m available immediately if you’d like to learn more.

Also, if you know of someone else who might be interested, we do offer a finders’ fee for any referrals that we hire. Have a great evening!

-Tyler

*** NOTE: I’m not a robot, I did review your resume manually, and all responses come directly to me! ***

*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*

POSITION SUMMARY: SECURITY ANALYST / ENGINEER

Responsibilities:

Analyze business, functional, and non-functional requirements to create technical design and unit test strategy documents.
Design, test, and implement solutions based on requirements provided from the Enterprise Application Services, Office of the Chief Information Officer (OCIO), USDA
Design artifacts that follow the technical standards and guidelines
Work with staff to define solutions and implement those solutions according to the agreed upon design.
Control deployment of HP “Source Code Analyzer”
Review monthly and quarterly Retina and WebInspect scans and recommend technical solutions to mitigate vulnerabilities
Actively transfer knowledge and mentor staff members on various aspects of system specific administration, configuration, and development

Required Skills:

Experience collaboratively establishing secure configuration baselines for technologies such as Windows Server 2008 R2, or Red Hat Enterprise Linux Server 6.
Experience securing Oracle database suites or MS SQL databases (not looking for someone who only has network skills).
Experience performing IT product security specification reviews.
Experience designing/reviewing architectures for adequate security such as secure authentication methods.
Ability to use collaborative communication skills and establish productive working relationships.
Experience with documentation reviews, including A&A packages
Awareness of the diagnostic and mitigation aspects of Information Security Continuous Monitoring.
Assists Information Systems Security Managers (ISSMs) in generating ATO package and continuous monitoring artifacts.
Assists in documenting and managing artifacts in online SharePoint and CSAM security repositories.
Knowledge of Risk Management Framework
Knowledge of NIST, FISMA and other applicable guidance

Desired Skills:

Implement security controls in appropriate information systems.
Assess the effectiveness of the security controls once they have been implemented.
Determine agency-level risk to the mission or business case.
Authorize the information system for processing.
Monitor the security controls on a continuous basis
Implement security controls in appropriate information systems.