Information Systems Security Officer - ISSO
Reston, VA
Applications have closed
In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture.
Description of Task to be Performed: AnaVation is seeking a Information Systems Security Officer to join our team and support our mission critical customer in Reston, VA. As an Information Systems Security Officer (ISSO), your role will include managing all aspects of an organization's information security system. Conduct risk analyses from vulnerability, compliance scans, pen testing results, or other audit activity; Writes including but not limited to Plan of Action and Milestones, System Security Plans, Security Control Traceability Matrices, Configuration Management Plans, Contingency Plans and Test Results, Business Impact Analyses, and Security Impact Analyses.
Required Qualifications:
- Clearance: Active TS/SCI Clearance with CI poly
- Education & Years of Experience: Bachelor’s degree in relevant field and 8+ years of experience related to specific functional area. (May substitute Master’s degree in lieu of 2 years of experience).
- Certifications:
- CompTIA Security+ or equivalent IAT Level II
- Currently hold or able to obtain CSSP certification (such as Cloud+ or equivalent)
- Experience and knowledge on:
- Ensure the day-to-day implementation, oversight, continuous monitoring, and maintenance of the security configuration, practices, and procedures for each IS in supporting compliant ATO status
- Provide liaison support between the system owner and other IS security personnel
- Ensure that selected security controls are implemented and operating as intended during all phases of the IS lifecycle
- Ensure that system security documentation is developed, maintained, reviewed, and updated on a continuous basis
- Conduct required IS vulnerability scans according to risk assessment parameters.
- Develop Plan of Action and Milestones (POAMs) in response to reported security vulnerabilities
- Manage the risks to ISs and other assets by coordinating appropriate correction or mitigation actions, and oversee and track the timely completion of (POAMs)
- Coordinate system owner concurrence for correction or mitigation actions
- Review, update and monitor security controls for ISs to maintain systems Authorized To Operate (ATO)
- Provide clear and concise decisions supporting IA Control Implementation applicability, inheritance, and requirements.
- Upload all security control evidence to the Governance, Risk, and Compliance (GRC) application to support security control implementation.
Preferred Qualifications:
- Security certifications: Security+, CCNA Security, CISSP, CySA+, SSCP, CCSP, or equivalent certification
- CSSP certifications: CEH, CFR, CySA+, Cloud+, CCNA Security, GICSP
- AWS, Cloud certifications
About AnaVation AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team.
If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you!
Tags: AWS CCSP CEH CISSP Clearance Cloud Compliance CompTIA GICSP Governance Monitoring Pentesting Risk assessment Security Impact Analysis SSCP System Security Plan TS/SCI Vulnerabilities Vulnerability scans
Perks/benefits: 401(k) matching Competitive pay Health care Insurance Medical leave
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs