Required Clearance: TS/SCI w/Poly

Job Description: ISSO level 1

The ISSO Provides support for a program, organization, system, or enclave’s information assurance program. Provides support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies. Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed. Assists with the management of security aspects of the information system and performs day-to-day security operations of the system. Evaluate security solutions to ensure they meet security requirements for processing classified information. Performs vulnerability/risk assessment analysis to support certification and accreditation. Provides configuration management (CM) for information system security software, hardware, and firmware. Manages changes to system and assesses the security impact of those changes. Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Supports security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF).

• Develop and maintain documentation for C&A in accordance with ODNI and DoD policies.
• Provide CM for security-relevant information system software, hardware, and firmware.
• Develop system security policy and ensures compliance.
• Evaluate security solutions to ensure they meet security requirements for processing classified information (U) Maintain operational security posture for an information system or program.
• Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system, program, or enclave.
• Develop and update the system security plan and other IA documentation.
• Assist with the management of security aspects of the information system and perform day-to-day security operations of the system.
• Administer the user identification and authentication mechanism of the Information System (IS)
• Perform systems security Scans and coordinate with support team on addressing security issues.
• Scan new products releases for classification or distribution issues.
• Track security related patches to the Operating System and external products (FOSS, COTS)

 Qualifications: Five (5) years’ experience as an ISSO on programs and contracts of similar scope, type, and complexity is required. Experience is to include at least one (1) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools.

• Bachelor’s degree in Computer Science or related discipline from an accredited college or university is required. Four (4) years of additional experience as an ISSO may be substituted for a bachelor’s degree.
• Two (2) years' experience using the LINUX, UNIX, Widows, or Cisco Operating System

Work location: Annapolis Junction, MD.