Information Systems Security Officer (ISSO)

GCyber is hiring an Information Systems Security Officer (ISSO), to support the Office of Military Commissions (OMC) as part of DISA’s Joint Service Provider (JSP) Service Delivery contract.

Although this position resides in the National Capital Region (NCR), there may be a requirement to travel to Naval Station Guantanamo Bay (NSGB), Cuba, occasionally.  


As an Information Systems Security Officer (ISSO), you will:
 

• Ensure that all OMC information systems meet Department of Defense Instruction 8500.01 mandated Cybersecurity requirements. 
• Provide Information System Security Officer (ISSO) support for OMC systems.
• Facilitate information system authorization to operate (ATO) compliance and re-accreditations IAW with DOD 8510.01 and ICD503.  This will be for any or all the NIPRNET, SIPRNET, JWICS, and Special Access Program (SAP) Systems supporting OMC.
• Facilitate registration and maintenance of OMC information systems in the Enterprise Mission Assurance Support Service (eMASS) system. This support includes all efforts associated with the Risk Management Framework (RMF) activities, such as artifact preparation, submission, and updates.
• Facilitate the completion and submission of waivers, exceptions to policy requests, and system change requests.
• Provide host-based security system (HBSS) client management.
• Implement and maintain anti-virus and malicious code protection for all OMC information systems using government-provided software.
• Provide and/or facilitate the distribution and installation of security patches.
• Provide or coordinate security vulnerability scanning and reporting using government-provided applications.
• Support scheduled OMC Command Cyber Readiness Inspections (CCRI), and Security Assessment Visits (SAV).
• Provide onsite incident management during regular working hours for NIPRNET, SIPRNET, JWICS, Special Access Program (SAP) Systems, and equipment.
• Develop performance measurements (goals/metrics/reports) utilizing the current RMF tracking Systems (eMASS and XACTA) and facilitate a feedback system to team members and the customer to enhance the quality of security support delivered.
• Utilize ITIL best practices to enhance and optimize the services provided to end users.
• Participate in implementing an enterprise knowledge base and knowledge management best practices for RMF and ISSO responsibilities.
• Coordinate with OMC and JSP IT support teams to request scans, patching, and STIG compliance and institute continuous improvement initiatives and methods.
• Resolve customer issues effectively or escalate them to appropriate support tiers.
• Assist in the professional and technical development of the team, especially for RMF topics.
• In addition, the contractor may be required to provide surge support after regular working hours, including weekends and holidays, as approved by the COR.

Minimum Qualifications and Experience:

• Active DoD Top Secret/SCI clearance.
• BS in Engineering, Computer Science, or other related field
• DoD 8570 IAT II certification (e.g., Security+, CND< CCNA-Security, CySA+, GICSP, GSEC, SSCP)
• 8-10 years (with Bachelor’s) or 6-8 years (with a Master’s) of professional experience supporting DoD or IC RMF activities.
• 5+ years of experience with ATOs and eMass.
• 4+ years of experience as an ISSO with tasks of a similar size/scope.

GCyber is an Equal Opportunity Employer. This means you don’t have to worry about whether your application process will be fair. We consider all applicants without regard to race, color, religion, age, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, veteran status, or disability.  
For future job notifications please follow GCyber on LinkedIn. https://linkedin.com/company/gcyber