Senior Information Security Professional (ISSO)
Reston, VA
Applications have closed
In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture.
The job duties of the ISSO are as follows:
• Responsibilities are full time on customer’s onsite and will cover classified programs and Special Access Programs (SAP). No Telework. • Provide subject matter expertise and consulting on security related matters for enterprise information system and network architectures, access problems, and implementation of security policies and procedures. • Assist in overseeing and managing day-to-day operation of SAP Information Systems. • Optimize system operation and resource utilization and performs system capacity planning/analysis while maintaining the security posture. • Assist team in DIA’s Authorization and Accreditation (A&A) process using RMF across the design lifecycle for classified systems obtaining and maintaining Interim Authority to Operate (ATO), ATO and Authority to Connect (ATC). • Create and process RMF authorization SAP packages from submission to approval/disapproval • Develop and maintain IT security documents, including system security plans, risk assessments, Plan of Action and Milestones (POA&M), contingency plans, incident response plans, IT security policies and procedures. • Provide recommendations regarding remediation and mitigation of identified vulnerabilities by developing plan of action and milestones (POA&Ms). • Advise developers on integrating security requirements • Demonstrate a strong understanding of Networks, Cloud, and IT system security authorization procedures.
Required Qualifications:
- Demonstrates strong experience with IC/DoD customer's Assessment and Authorization (A&A) process (e.g., RMF, NIST800-53, ICD503).
- Experience in developing and implementing DoD/DIA approved information security controls, procedures and documentation for the operation of standalone classified systems.
- A Bachelor’s Degree from an accredited institute in an area applicable to this position and eight (8) years of relevant experience
- An additional four (4) years of relevant experience may be substituted for the bachelor’s degree
- Must presently be 8570 compliant (IAT Level 2 preferred); must be 8570 compliant (IAT Level 2)
- Experience with one or more commercial government cloud service provider’s system accreditation processes
- Experience with the Xacta
- Experience as a Cybersecurity Control Assessor for SAP
- Experience with Ongoing Authorizations and Assessments
- Experience with C2S Cloud, or DevOpsSec)
- Active TS/SCI with CI Poly
About AnaVation AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team.
If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you!
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Cloud DoD DoDD 8570 Incident response POA&M Risk assessment RMF SAP System Security Plan TS/SCI Vulnerabilities
Perks/benefits: 401(k) matching Competitive pay Health care Insurance Medical leave
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs