Information Systems Security Officer (ISSO)
Spectrum Comm Inc
Nellis Air Force Base, nevada
Job Details
Full-time
Full Job Description
Information Systems Security Officer (ISSO)
Spectrum is seeking highly qualified Information Systems Security Officer to support our customer at Nellis AFB, NV. In this role you will advise and assist the customer with operational test planning, execution, data analysis and reporting.
Key Roles and Responsibilities:
- ISSO is responsible for manage the cyber security, system administration, and network administration responsibilities for AIS, IAW the Department of Defense Joint SAP Implementation Guide (DoD JSIG) and applicable DoD, Department of the Airforce (DAF), Air Combat Command (ACC), and 57th Wing applicable AIS security polices and regulations.
- Implement and enforce all AF cybersecurity policies, procedures, and countermeasures.
- Accomplish and document weekly system audits and save them for 57th Wing ISSM review.
- Provide AIS & network support to support cyber organizational operational readiness. Accreditation and operational status of all systems and networks shall be 100% current and operational.
- Maintain COMSEC training and appointment for applicable organization(s) COMSEC account(s).
- Perform analysis of network security, based upon the RMF, JSIG NISPOM Chapter 8, and other sources as added or updated, advise customers on IT certification and accreditation issues.
- Advise 57 WG ISSM and government Program Managers (PM) on security testing methodologies and processes.
- Evaluate certification documentation and provide written recommendations for accreditation.
- Reviews systems security to accommodate changes to policy or technology.
- Evaluate IT threats and vulnerabilities to determine whether additional safeguards are needed and report these threats or vulnerabilities to HQ ACC/A8Z, Command Information Assurance Manager.
- Develop and maintain a formal Information Systems Security Program.
- Review and evaluate all certification/accreditation support documentation for proof of acceptable information systems and network security procedures. Based upon review, provide written documentation for accreditation to the 57th Wing ISSM, to include External Information Systems (EIS).
- Ensure approved procedures are in place for clearing, purging, declassifying, and releasing system memory, media, and output.
- Maintain a repository for all system certification/accreditation, documentation, and modification.
- Coordinate AIS security inspections, tests, and reviews. Ensure proper protection or corrective measures have been taken when an incident or vulnerability has been discovered within the applicable computer or network system.
- Ensure development and implementation of an information security education, training, and awareness program, to include attending, monitoring, and presenting AIS security training.
- Evaluate threats and vulnerabilities to ascertain whether additional safeguards are needed. Assess configuration changes in the system, environment, and operational needs that could affect the accreditation.
- Conduct periodic testing of the security posture of the information systems as required by the DAA. Verify the compliance of the system with the security requirements by demonstrating, inspecting, and analyzing the system’s capabilities and base-line configuration.
- Perform weekly system audits as required by the DAA on multiple systems; work closely with system administrators and ensure current security measures are sufficient and in compliance with approved policies and processes.
- Write Request for Approvals (RFA) for equipment and electronic data being used in off-site locations.
- Participate in self-inspections and Command Compliance Inspections; identify discrepancies and report security incidents as required by the DAA and/or Program Security Officer (PSO).
- Maintain a working knowledge of system functions, security safeguards, and operational security measures. Provide research and analysis in support of expanding programs and areas of responsibility.
Requirements
Experience:
- Be proficient at installing, maintaining, and upgrading the following hardware: PC desktop systems, TACLANE, HP LaserJet printers, LCD projection systems, enterprise servers, network switches, and network patch racks. Contractor shall also be able to assemble twisted pair and install fiber optic network cables.
- Be proficient working with the following software: Microsoft Windows Server, Microsoft Active Directory Services, Domain Name System (DNS), BitLocker, Microsoft Windows Enterprise, Microsoft Office, Jetico BC Wipe, and other software/versions as determined by version and technology updates.
- 3 years of experience with 1 year of RMF experience
Education/Certifications:
- High School Diploma
- Possess and maintain one of the following certifications to be compliant with (722) ISSM Intermediate Level IAW DoD Manual 8140.03 “Cyberspace Workforce Qualifications and Management Program”: CGRC/CAP, CASP+, CCSP, Cloud+, SSCP, Security+, or GSEC. Additionally, the contractor shall have a minimum of one year of direct professional experience with DoD JSIG RMF and network management security requirements.
Security Clearance:
- Active Top Secret Security Clearance with SCI eligibility
- Eligible for SAPs, Restricted Data, Formerly Restricted Data, CNWDI, and any other caveats identified by the customer
- NOTE: shall be subject to random Counter-Intelligence polygraphs to maintain SAP eligibility
Benefits
- Health Care Plan (Medical, Dental & Vision)
- Retirement Plan (401k, IRA)
- Life Insurance (Basic, Voluntary & AD&D)
- Paid Time Off (Vacation, Sick & Public Holidays)
- Family Leave (Maternity, Paternity)
- Short Term & Long Term Disability
- Training & Development
- Wellness Resources
- Stock Option Plan