Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Information System Security Analyst / Information Systems Security Officer (Isso)

Expired Job

Summit Technologies, Inc. Washington , DC 20001

Posted 3 weeks ago

Summit Technologies, Inc. has a position for an Information Systems Security Analyst / Information Systems Security Officer (ISSO). Your primary function is to provide subject matter expertise to the governments Security Program Management Office (SPMO) and Information System Security Officer (ISSO).In this dual role, you will have responsibilities for Information Systems Security Analyst functions and Information Systems Security Officer functions.This on-site position is located in Washington DC and requires a Public Trust clearance.

Systems Security Analyst


  • Perform root cause analysis of audit findings.
  • Develop requirements for security control remediation activities.
  • Review audit closure requests and status reports for security control accuracy and completeness.
  • Interpret security principles and requirements for technical teams and acquisition project teams.
  • Evaluate the effectiveness of proposed solutions to audit findings and other security control weaknesses.
  • Develop plans to address gaps in the General Support Systems security posture.

Systems Security Officer (ISSO)


  • Perform security impact analysis of proposed configuration changes.
  • Develop security control implementation statements.
  • Review procedures and work instructions for security coverage.
  • Review and update the System Security Plan and its supporting documents.

Overarching Responsibilities:

  • Develop security recommendations following NIST guidance and security best practices.
  • Tailor NIST SP 800-53 security controls to the environment.
  • Support the development of security solutions.
  • Create and track security Plans of Action and Milestones (POA&Ms).
  • Coordinate with Platform teams to maintain currency of the systems technical description and control implementation statements.
  • Perform a security impact analysis for each proposed change to the systems configuration.
  • Review and update security artifacts and process/procedure documents.
  • Review work instructions and operational procedures for compliance with security requirements and policy.
  • Interpret security principles and requirements for technical teams.
  • Collaborate with ISSOs of other FISMA systems to ensure continuous compliance with security control inheritance conditions.
  • Monitor remediation of system vulnerabilities discovered by scanning tools.

Experience & Skills:

  • At least five (5) years serving as, or supporting, an ISSO or ISSM.
  • Demonstrated experience with Information Security engineering practices and experience with implementation of NIST security controls.
  • Experience implementing the NIST Risk Management Framework.
  • Broad understanding of security protections typical in enterprise environments, including security hardening, firewalls and input filtering, DiD architectures and boundary/endpoint best practices.
  • Basic understanding of server, workstation, network, database and web technologies.
  • Familiarity with Cyber Security Assessment and Management (CSAM), Splunk, Symantec Endpoint Protection, Tenable Security Center, IBM BigFix and Cisco IDS/IPS tools.
  • Knowledgeable of security policy/manuals and other guiding policy documents.
  • Ability to take a proactive and aggressive stance with minimal guidance, and function well in a team environment.
  • Strong presentation, communication and writing skills.
  • Fluent in all Microsoft Office products (Word, PowerPoint, Excel, Project, Visio).

Education & Certification(s):

  • Bachelors degree or 9 years of additional security-related experience may be substituted.
  • Active CompTIA Security+ or (ISC)2 CISSP certification
  • Administrator-level expertise in at least one of the following technology areas:
    • oMicrosoft Windows (Server 2008 or 2012, Windows 10)
    • oUnix (Solaris 10 or 11)
    • oLinux (RHEL 5 or 6)
    • oIP networks (IPv4, TCP and UDP transport, VLANs, WLAN)

Security Requirements:

  • All candidates for consideration must be eligible to obtain a Public Trust Clearance.

If you are a good match and interested in more information, please reply or forward the following information to 3zgpmguqxi1-874201@crelate.netand place "5445" in the email subject line:

  • Updated resume in Word format; including MM/YYYY for each employer
  • Best times and ways (email address and phone numbers) to reach you
  • Desired compensation (salary or hourly-no benefits)
  • Availability to interview and start

Summit Technologies Inc. appreciates your interest. We will contact the best prospects, and will consider you for future opportunities. We will not submit your resume without your prior knowledge and consent. Summit Technologies is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, age, protected veteran status, or disability status.

See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Systems Security Officer (Isso) Task Lead

Solutions By Design II, LLC

Posted 2 days ago

VIEW JOBS 11/13/2018 12:00:00 AM 2019-02-11T00:00 SBD is seeking an energetic and motivated <strong>Information Systems Security Officer (ISSO) Task Lead</strong> for a federal client.  The ISSO Task Lead shall effectively and efficiently plan, organize and manage all aspects of the ISSO activities as part of a large-scale information assurance and cyber security project.  The ISSO Lead leads a small group of skilled ISSO’s supporting 100+ systems. The ISSO Lead works hand-in-hand with the SBD Program Manager and the government ISSO lead to provide quality and timely solutions for ISSO support while delivering innovation and improvements to current processes and technologies to improve the overall security posture of the department.  The ISSO Task Lead should be experienced with CDM, NIST, FISMA, and compliance.<br /> <br /> In this position, the Task Lead will: <ul> <li style="padding: 0; margin: 0;">Organize, direct, and coordinate planning and execution of all ISSO support activities</li> <li style="padding: 0; margin: 0;">Oversee day-to-day management of 5+ person team, including subcontractor personnel</li> <li style="padding: 0; margin: 0;">Identify, manage, and mitigate risks as appropriate to ensure project success.</li> <li style="padding: 0; margin: 0;">Ensure effective working relationships and communications at all appropriate levels.</li> <li style="padding: 0; margin: 0;">Support continuous improvement activities.</li> <li style="padding: 0; margin: 0;">Main point of contact for Government ISSO lead.</li> <li style="padding: 0; margin: 0;">Maintain relationship with Government ISSO lead.</li> <li style="padding: 0; margin: 0;">Ensure ISSO team meets required contract requirements and deliverables.</li> <li style="padding: 0; margin: 0;">Provide weekly, monthly reports to SBD Program Manager and customer as required.</li> <li style="padding: 0; margin: 0;">Develop/track ISSO support activities schedules.</li> <li style="padding: 0; margin: 0;">Manage project management plan updates for ISSO support activities.</li> </ul> <br />  <br /> The ISSO Lead is dedicated to performing the risk management services for several security boundaries to include FedRAMP cloud hosted applications and offers services in the following areas.<br /> Technical responsibilities include: <ul> <li style="padding: 0; margin: 0;">Incident response, as needed</li> <li style="padding: 0; margin: 0;">Coordinate Incident Response with the agency System Owners (SO) to include all associated actions necessary to mitigate the risk to unit systems</li> <li style="padding: 0; margin: 0;">Prepare and coordinate Incident Responses with the agency ISSM to include all associated actions necessary to mitigate the risk to unit systems.</li> <li style="padding: 0; margin: 0;">Computer investigations and forensics</li> <li style="padding: 0; margin: 0;">POA&M Review/Processing</li> <li style="padding: 0; margin: 0;">On a quarterly basis, update POA&M information in centralized authoritative source</li> <li style="padding: 0; margin: 0;">Assist in and/or prepare Weakness Completion Verification Forms</li> <li style="padding: 0; margin: 0;">Security architecture and engineering support</li> <li style="padding: 0; margin: 0;">Develop, prepare and/or update SOP's as identified or as necessary</li> <li style="padding: 0; margin: 0;">SOP's are updated at a minimum annually</li> <li style="padding: 0; margin: 0;">Consolidate all ISSO Activity Status Reports. Report requirements and format shall be established by the designated Government Task Lead after award</li> </ul> <br /> <br /> <strong>Requirements: </strong> <ul> <li style="padding: 0; margin: 0;">Bachelor’s Degree in CS, IT, or Engineering</li> <li style="padding: 0; margin: 0;">10+ years experience in IT field; 5+ years consulting experience</li> <li style="padding: 0; margin: 0;">5+ years experience with NIST and FISMA</li> <li style="padding: 0; margin: 0;">3+ years experience managing staff</li> <li style="padding: 0; margin: 0;">Must have 3+ years experience supporting Federal customers </li> <li style="padding: 0; margin: 0;">Must have 3+ years demonstrated success serving in ISSO support roles.</li> <li style="padding: 0; margin: 0;">Must have CISSP certification</li> <li style="padding: 0; margin: 0;">Must be highly organized and have solid interpersonal skills</li> <li style="padding: 0; margin: 0;">Strong communication skills, listening and writing skills</li> <li style="padding: 0; margin: 0;">Energy, integrity and strong work ethic</li> <li style="padding: 0; margin: 0;">Must have a DoD Secret or Top Secret clearance and be able to obtain a federal government EOD</li> </ul> <br /> <br /> <strong>Desired: </strong> <ul> <li style="padding: 0; margin: 0;">Cloud security experience</li> <li style="padding: 0; margin: 0;">CDM security experience</li> <li style="padding: 0; margin: 0;">CCSP, CIPP, CAP, CASP/GSLC/CISM/CSM or other industry standard security certifications</li> </ul> Solutions By Design II, LLC Washington DC

Information System Security Analyst / Information Systems Security Officer (Isso)

Expired Job

Summit Technologies, Inc.