Information System Security Officer (ISSO)
Arlington, Virginia
Applications have closed
Two Six Technologies
Two Six Technologies is seeking an experienced Information System Security Officer (ISSO) within its Two Six Electronic Systems (TSE) business unit.
The ISSO will have responsibility for maintaining the appropriate operational security posture for all information systems on our programs – they will work closely with our operations, IT, and security teams to ensure compliant and secure deployment and maintenance of custom systems, networks, and systems-under-test.
This technical role requires broad experience across technical, compliance, and security domains. A successful candidate will have a structured yet flexible approach to problem solving and collaboration and a strong willingness to learn, adapt, and build processes within TSE.
Responsibilities Include:
- Manage the security and compliance of multiple classified systems, ensuring compliance with standards and guidelines
- Conduct risk analyses from vulnerability/compliance scans, penetration testing results, or other audit activity
- Perform technical audit of systems for compliance with standards and suspicious activity
- Develop and coordinate Incident Response, Disaster Recovery, Contingency Planning and Testing
- Develop and update security authorization packages in accordance with DoD JSIG,DAAPM, and ICD 503 policies.
- Coordinate with the client cybersecurity team to achieve and maintain information systems compliance and authorization to operate (ATO).
- Assist with developing corporate cyber security policies for SCI and SAP efforts.
- Conduct STIG Compliance Reviews.
Minimum Qualifications
- Active Top Secret security clearance or the ability to obtain SCI
- 2-3 years of experience in an ISSO/ISSM role
- One or more DoD 8570 IAM Level III certifications such as CISSP, CISM, GSLC, and/or CCISO
- Experience with Administering, and Maintaining a variety of tools including hands-on experience in the following:
- Identity and Access Management (IAM)
- Security Information and Event Management (SIEM)
- Network-based and host-based IDS/IPS
- Network-based and host-based firewalls
- Auditing and logging procedures (including server-based logging)
- Basic system, network, and OS hardening techniques on Windows and Linux systems
- Cyber defense and vulnerability assessment tools and their capabilities. (e.g., ACAS, SCAP, Nessus, Qualys)
- Developing, testing, and integrating security tools as well as configuring and installing the tools.
- Willing to submit to a CI Poly
Nice to Haves:
- Bachelor's Degree in Computer Science, Computer Information Systems, Electrical Engineering, Cyber Security or Equivalent Degree
- Experience on SAPs
- Intimate Knowledge of Security configuration baselines (DISA STIG) and best practices including NIST 800-53/171 and CMMC
- Ability to work quickly, efficiently, and accurately in a dynamic and fluid environment
Two Six Technologies is an Equal Opportunity Employer and does not discriminate in employment opportunities or practices based on race (including traits historically associated with race, such as hair texture, hair type and protective hair styles (e.g., braids, twists, locs and twists)), color, religion, national origin, sex (including pregnancy, childbirth or related medical conditions and lactation), sexual orientation, gender identity or expression, age (40 and over), marital status, disability, genetic information, and protected veteran status or any other characteristic protected by applicable federal, state, or local law.
If you are an individual with a disability and would like to request reasonable workplace accommodation for any part of our employment process, please send an email to accomodations@twosixtech.com. Information provided will be kept confidential and used only to the extent required to provide needed reasonable accommodations.
Additionally, please be advised that this business uses E-Verify in its hiring practices.
EOE, including disability/vets.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: ACAS Audits CISM CISSP Clearance CMMC Compliance Computer Science Cyber defense DAAPM DISA DoD DoDD 8570 Firewalls GSLC IAM ICD 503 IDS Incident response IPS Linux Nessus NIST NIST 800-53 Pentesting Qualys SAP SCAP Security Clearance SIEM Top Secret Windows
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs