Information System Security Officer III

Athena Technology Group
Philadelphia, United States of America
1 month ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Philadelphia, United States of America

Tech stack

Software System Penetration Testing
Configuration Management
Computer Security
Information Systems
Information Security Management
Software Vulnerability Management
Navsea
Vulnerability Analysis

Job description

We are seeking an Information System Security Officer to join our team. You will play a key part in ATG's technical support for Naval Surface Warfare Center Philadelphia Division (NSWCPD) specializing in cybersecurity support, validation support, IT and cyber policy writing and program implementation support. Our team will provide direct support cybersecurity policy, A&A artifacts, validation and security posture reviews., * Assist the Information System Security Managers (ISSM) in executing their duties and responsibilities.

Ensure compliance with all NAVSEA, DON, and DoD cybersecurity policies.

Ensure relevant Cybersecurity (CS) policy and procedural documentation is current and accessible to properly authorized individuals.

Coordinate cybersecurity processes and activities for assigned systems.

Maintain and report Assess Only (AO) and Assessment and Authorization (A&A) status to Program Managers, Information System Owners, and ISSMs.

Provide oversight of Security Plans for assigned systems throughout their lifecycle. (CDRL A006)

Manage and maintain Plan of Actions and Milestones (POA&M), ensuring vulnerabilities are properly tracked, mitigated, and where possible, remediated.

Assist with the identification of security control baselines and applicable overlays.

Coordinate the validation of security controls with Navy Qualified Validators (NQV).

Perform Risk Management Framework (RMF) Standard Operating Procedure (SOP) reviews.

Adjudicate findings from Package Submitting Officer (PSO). (CDRL A001)

Register and maintain systems in Enterprise Mission Assurance Support Service (eMASS).

Plan and coordinate security control testing during Risk Assessments and Annual Security Reviews.

Report changes in system security posture to the ISSM.

Ensure the execution of Continuous Monitoring related requirements as defined in the System Level Continuous Monitoring (SLCM) Strategy.

Review all data produced by Continuous Monitoring activities, update the eMASS record as necessary, and escalate to leadership for action, if required.

Correlate findings from non-RMF vulnerability assessments (e.g., Development Test (DT)/Operational Test (OT), penetration testing, Command Cyber Operational Readiness Inspection (CCORI), etc.) to RMF controls for tracking, ensuring a holistic risk assessment

Requirements

Secret Clearance Level

Bachelors degree

Six (6) years of experience coordinating and enacting required security changes within various levels of an organization, ensuring compliance with published policies; conducting cybersecurity vulnerability and threat analysis; and supporting cyber incident response by isolating potentially affected assets, initial investigation and data collection, through status updates/reporting

Industry-specific knowledge, IAM-II level certifications - CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, HCISP; IAT-II level certifications - CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP

About the company

Athena Technology Group, Inc. (ATG) is a Service-Disabled Veteran Owned Small Business (SDVOSB) and Historically Underutilized Business Zone (HUBZone) established in 2010. ATG has immense experience and a strong, solid reputation throughout various government agencies, providing consistently superior, innovative, and cost-effective solutions. ATG is a premier provider of cybersecurity, risk management framework (RMF), and communications cybersecurity solutions, as well as information technology (IT) and communications consulting, system engineering, integration, deploymen,t and operation of state-of-the-art command and control and information systems that deliver critical network centric solution to the warfighter. We are looking for innovative industry professionals to join our team and continue our proven track record.

Apply for this position