SonicJobs Logo
Left arrow iconBack to search

Information Systems Security Officer

Base-2 Solutions, LLC
Posted 5 months ago, valid for 18 days
Location

Riva, MD 21140, US

Salary

Competitive

Contract type

Full Time

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Sonic Summary

info
  • Base-2 Solutions is looking for an Information Systems Security Officer (ISSO) to ensure the security posture of mission-critical systems.
  • The ideal candidate should have at least 3 years of experience in cybersecurity and a strong understanding of security regulations and frameworks.
  • Responsibilities include maintaining security documentation, conducting risk assessments, and facilitating system authorization activities.
  • Candidates should be familiar with security tools, operating systems, and cloud environments, and possess relevant security certifications.
  • The position offers a competitive salary of $100,000 to $120,000, depending on experience and qualifications.

Job Description:

Base-2 Solutions is seeking a dedicated and detail-oriented Information Systems Security Officer (ISSO) to join our team. Our ISSOs are responsible for ensuring the security posture of mission-critical systems by supporting compliance efforts, managing risk, and enforcing security policies. We're looking for individuals who excel at navigating complex cybersecurity environments, maintaining meticulous documentation, and fostering collaboration between technical teams and government stakeholders. The ideal candidate will have strong knowledge of security regulations, be adaptable, and possess excellent communication skills to drive information security initiatives forward. 

Responsibilities:

  • Ensures system compliance with federal, DoD, and IC cybersecurity regulations and standards, including NIST, ICD 503, CNSS, and RMF. 

  • Maintains and updates security documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), Plan of Action and Milestones (POA&Ms), and Continuous Monitoring Plans. 

  • Coordinates and supports security assessments, audits, and inspections by internal and external stakeholders. 

  • Conducts risk assessments and vulnerability analysis, providing recommendations for mitigating identified risks. 

  • Facilitates and oversees system authorization activities in accordance with the Risk Management Framework (RMF) process. 

  • Monitors and reports on system security posture, incident response, and remediation efforts. 

  • Collaborates with Information Systems Security Engineers (ISSEs), system administrators, and program managers to integrate security requirements into system lifecycle. 

  • Provides security awareness training to system users and enforces proper security practices. 

  • Acts as a liaison between the organization and government customers, ensuring timely communication of security updates and issues. 

Experience with some or all of the following:

  • Security frameworks and policies: NIST SP 800-53, RMF, ICD 503, CNSS, DoD STIGs, FISMA, FedRAMP 

  • Experience managing security documentation: SSPs, POA&Ms, Security Controls Assessment (SCA) artifacts, SARs, SCTM 

  • Security tools such as ACAS, Nessus, Splunk, HBSS, eMASS, Xacta 

  • Knowledge of security technologies: Firewalls, SIEMs, VPNs, IDS/IPS, DLP, PKI, Multi-Factor Authentication 

  • Operating systems: Windows, Linux, Unix, macOS 

  • Experience with Cloud environments (AWS, Azure, Google Cloud) and cloud security controls 

  • Familiarity with Vulnerability scanning, Security testing, Incident response processes 

  • Collaboration tools like JIRA, Confluence, ServiceNow 

  • Strong knowledge of system authorization process, audit support, and compliance reporting 

  • Security certifications such as CISSP, CAP, Security+, CISM, CEH, AWS Security Specialty 

 




Learn more about this Employer on their Career Site

Apply now in a few quick clicks

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.