Information Systems Security Officer (ISSO)

Overview

SMS is seeking a highly motivated experienced Information System Security Officer in support of a dynamic team at Maxwell AFB, Gunter Annex, AL.  The positions will support the ISSM maintaining the authorization of the system throughout its life-cycle and provide support and technical expertise related to Defense in Depth principles and technology in security engineering designs and implementation.

As a dynamic systems integrator, SMS offers proven solutions in engineering, operations, cybersecurity, and digital transformation. With expertise in modernizing and optimizing legacy infrastructure and systems, ensuring operational efficiency, and designing, implementing, and managing secure environments, SMS supports business and mission goals with proficiency, quality, and integrity.

SMS has been serving the advanced information technology needs of the federal government since 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 40 years. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. For additional information on SMS, visit www.sms.com.

Submit your resume today!

Responsibilities

• Implements and enforce all cybersecurity policies, procedures, and countermeasures.
• Ensures all users have the requisite security clearances and need-to-know, complete annual cybersecurity training, and are aware of their responsibilities before being granted access to the system.
• Maintains all authorized user access control documentation.
• Ensures software, hardware, and firmware complies with appropriate security configuration guidelines (e.g., security technical implementation guides /security requirement guides).
• Ensures proper configuration management procedures are followed prior to implementation and contingent upon necessary approval.
• Coordinate changes or modifications with the government.
• Initiates protective or corrective measures, in coordination with the government when a security incident or vulnerability is discovered.
• Reports security incidents or vulnerabilities to the designated representatives.
• Initiates exceptions, deviations, or waivers to cybersecurity requirements, as required.
• Participate in remanence security risk management processes.
• Process data loss prevention exemptions and removable media whitelist requests.
• Document the review of logs and audit trails at a minimum weekly, more frequently if required.
• Conduct removable media audits must be conducted at least annually, and logs must clearly show two-person control activity for all actions.

Qualifications

Qualifications/Requirements:

• 3+ years of experience in utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include: NESSUS, ACAS, DISA STIGs, Audit Tools, ESS, eMASS. PPS.
• Experience as an information system security officer (ISSO) or information system security manager (ISSM) supporting classified programs.
• Experience in assessing and documenting test or analysis data to show cybersecurity compliance.
• Prior system administrator or network operator experience with devices supported in the contract.
• Maintain an IAT level II certification; Secuirty + or higher
• Maintain a Microsoft 900 certification; or PCNSA

Clearance:  

• Active DoD Secret security clearance

SMS is a veteran-owned network integrator established in 1976.  With an employee retention rate averaging over 5 years, our ability to hire quality people and retain them in a rapidly evolving IT market proves why we are a world-class information technology company. At SMS, we place a high value on quality of service, customer satisfaction, and best-of-breed policies and practices. As a result, SMS is proud to be ISO 9001:2008 Registered and a CMMI Level 3 certified company, ensuring that we continue to meet and exceed the expectations of our customers, partners and employees. 

SMS is an Equal Opportunity Employer.