Senior Information System Security Officer
Remote
Chameleon Consulting Group
- Assist in the creation and maintenance of automated cybersecurity mechanisms.
- Develop and integrate cybersecurity best practices for Kubernetes clusters and DevOps pipelines.
- Create automated artifact generation capabilities (i.e. SSP, PPSM, SCTM).
- Maintain communication with project engineers on the implementation of security controls and policy enforcement.
- Support the implementation of technologies into the CI/CD processes and systems to establish secure-by-default standards for CCG products.
- Evaluate, develop and/or implement information assurance guidelines and procedures as required.
- Recommend security solution mitigations and enhancements supporting information assurance guidelines and customer requirements.
- Perform vulnerability/risk analysis of computer systems and applications during all phases of the system development life cycle.
- Provide input into an Audit and Accountability Plan containing methods, procedures, and planned reviews for the continuing accreditation.
- Ensure that all information systems meet or exceed compliance requirements.
- Identify, report, and ensure the resolution of security violations.
- Monitor and review the regular updates/upgrades to equipment and procedures to maintain pace with cybersecurity requirements and business needs.
- 5-8 years of experience working as an ISSO or ISSE
- Must currently hold a Secret clearance, with eligibility to obtain TS/SCI
- Current DoDM 8570 IAM I compliance: CAP, CND, Cloud+, GSLC, Sec+, HCISPP
- Ability to effectively communicate with various stakeholders and team members
- Strong understanding of the Risk Management Framework (RMF) process and solid understanding of the System Development Life Cycle (SDLC)
- Experience auditing and performing control assessments
- Experience with integrating technologies and security solutions on information systems
- Demonstrated experience with ATO packages
- Demonstrated analytical and problem-solving skills
- Strong understanding of microservices and DevOps practices
- Certified Information Systems Security Professional (CISSP)
- Experience using scanners (i.e. ACAS, Nessus, SonarQube)
- Ability to identify needed changes to processes and activities and help to implement continuous improvement solutions
- Have experience creating various types of vulnerability and assessment scans with multiple tools
- Experience using eMASS or Xacta
- Experience with OSCAL
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: ACAS Audits CI/CD CISSP Clearance Cloud CND Compliance DevOps DoDD 8570 eMASS GSLC IAM ISSE Kubernetes Microservices Nessus Risk analysis Risk management RMF SCTM SDLC SonarQube System Security Plan TS/SCI
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open SQL-related jobs
- Open PowerShell-related jobs