ISSO - Cloud
Role details
Job location
Tech stack
Job description
You will be responsible for technical information assurance engineering efforts with network/server scanning, patching, mitigation, and compliance cross-checking of target network assets. Experience in ST&E process and POAM generation. You will need a strong understanding of approved COTS security analyst tools and government mitigation/compliance checkers. You will need a strong comprehension of FISMA, DIACAP, NIST-800 SPs and DCID 6/3 standards and policy control grouping., * Serve as the principal advisor to the Information System Owner (SO), Business Process Owner, and the Chief Information Security Officer (CISO) / Information System Security Manager (ISSM) on all matters, technical and otherwise, involving the security of an information system
- Responsible for ensuring the implementation and maintenance of security controls
- Direct and implement the necessary controls and procedures to cost-effectively protect information systems assets from intentional or inadvertent modification, disclosure, or destruction
- Provide guidance and direction for the physical protection of information systems assets to other functional units
- Provide reports to superiors regarding effectiveness of data security and makes recommendations for the adoption of new procedures
- Assist with reviewing, developing, and navigating the system, team, and customer through the Authority to Operate (ATO) accreditation/certification documentation process
- Perform network self-inspections
- Create new and edit existing documentation that forms the Authority to Operate (ATO) package to include the System Security Plan and IS contingency plan
- Develop Plan of Action and Milestone (POAMS) from vulnerability data and enter into the system of record
- Possesses and applies a comprehensive knowledge across key tasks and high impact assignments
- Plan and lead major technology assignments
- Evaluate performance results and recommend major changes affecting short-term project growth and success
- Function as a technical expert across multiple project assignments
Requirements
Do you have a valid AWS Certified Cloud Practitioner - Foundational certification?, Do you have experience in Vulnerability scanning implementation?, * Active Top-Secret clearance with SCI eligibility
- Bachelor's degree in Information Systems Engineering, Computer Science, Engineering, Business or other related field; experience considered in lieu of degree
- AWS Cloud Practitioner Certification (or similar)
- Minimum of 8 years of experience; 7+ years of experience working as an Information Systems Security Officer
- In-depth knowledge of information security principles, methodologies, and best practices
- Extensive cloud administration experience; cloud ATO's (Authority to Operate)
- Familiarity with industry standards and regulations (e.g., ISO 27001, NIST, HIPAA, etc.)
- Experience in conducting risk assessments and implementing security controls
- Experience with Risk Management Framework (RMF), ICD 503, NIST SP800-53 or DCID 6/3
- Proficiency in using security tools and technologies, such as firewalls, intrusion detection systems, SIEM, and vulnerability management tools
- Strong analytical and problem-solving skills to identify security gaps and develop effective mitigation strategies
- Knowledge of incident response procedures
- Familiarity with the ATO process
Preferred Qualifications:
- Splunk, JIRA, Confluence, Nessus
- Strong Excel experience
- Experience with Amazon Web Services and/or Microsoft Azure Cloud
- Experience implementing, reviewing, and providing recommendations on Cloud Security configurations
- Experience with Microsoft Windows Server and Linux
- AWS Associate Level or above Certification(s)
Benefits & conditions
Pulled from the full job description
- Health insurance
- 401(k) matching
- Paid time off
- Vision insurance
- Health savings account
- Dental insurance
- Flexible spending account, Work Schedule: Typically, Monday through Friday 8-hour days onsite. Flexibility within a 2-week pay period to reach 80 hours
#INDTech
Pay: $145,000.00 - $155,000.00 per year, * 401(k) matching
- Dental insurance
- Flexible spending account
- Health insurance
- Health savings account
- Life insurance
- Paid time off
- Vision insurance
Application Question(s):
- Do you have an active AWS Cloud Practitioner Certification (or similar)?
Security clearance:
- Top Secret (Required)