SECURITY OFFICER (ISSO)--MID & SENIOR-LEVELS
Active DoD Top Secret
Corporation is seeking two ISSOs (one mid-level, one senior-level), to be
located at a Department of the Navy facility in Suitland, MD. The ISSOs
will perform automated security scans (weekly or as required by regulation),
using automated tools such as Assured Compliance Assessment Solution (ACAS),
Center for Internet Security (CIS) Benchmark, Security Content Automation
Protocol (SCAP), and Retina.
scan results and document findings for products as required to
successfully complete Collateral and SCI-level security certification
testing and evaluation (ST&E) as appropriate for the product.
results and findings are to be documented according to NAVINTEL IA and ICD
503 Risk Management Framework (RMF) processes.
ISSO responsibilities per SECNAV M-5239.2, which includes acting as a
point of contact for matters of cybersecurity relating to assigned
systems, reviewing audit trail logs and scans, ensuring systems are
maintained per security policies and procedures, and maintaining
compliance and reporting weekly findings to Vulnerability Remediation
Asset Management (VRAM).
research and testing to ensure existing and evolving products/services
results of security requirements analysis, evaluations, alternatives and
and execute a plan for each system.
- Mid-Level: Minimum 5-8
years of experience supporting cybersecurity and ISSO processes,
preference for candidates with Navy experience.
- Senior-Level: Minimum 8-10
years of experience supporting cybersecurity and ISSO processes, preference
for candidates with Navy experience.
- Mid-Level: IAM Level II
(CAP, CASP+ CE, CISM, CISSP (or associate) or GSLC certification) required.
- Senior-Level: IAM Level III
(CISM, CISSP (or Associate), or GSLC) required.
DoD Top Secret/SCI clearance strictly required.
Netizen Corporation is an EEO employer - M/F/Vets/Disabled