MID-LEVEL INFORMATION SYSTEM SECURITY OFFICER (ISSO)--Suitland, MD
Active DoD Top Secret Clearance required
Netizen Corporation is seeking an ISSO, to be located in Suitland, MD. The ISSO will perform automated security scans (weekly or as required by regulation), using automated tools such as Assured Compliance Assessment Solution (ACAS), Center for Internet Security (CIS) Benchmark, Security Content Automation Protocol (SCAP), and Retina.
- Analyze scan results and document findings for products as required to successfully complete Collateral and SCI-level security certification testing and evaluation (ST&E) as appropriate for the product.
- Scan results and findings are to be documented according to NAVINTEL IA and ICD 503 Risk Management Framework (RMF) processes.
- Perform ISSO responsibilities per SECNAV M-5239.2, which includes acting as a point of contact for matters of cyber security relating to assigned systems, reviewing audit trail logs and scans, ensuring systems are maintained per security policies and procedures, and maintaining compliance and reporting weekly findings to Vulnerability Remediation Asset Management (VRAM).
- Conduct research and testing to ensure existing and evolving products/services meet requirements.
- Document results of security requirements analysis, evaluations, alternatives and risk assessments.
- Document and execute a plan for each system.
- Minimum 5-8 years of experience supporting cybersecurity and ISSO processes.
- IAM Level II (CAP, CASP+ CE, CISM, CISSP (or associate) or GSLC certification) required.
- DoD Top Secret/SCI clearance required.
Netizen Corporation is an EEO employer - M/F/Vets/Disabled