Senior ISSO

Responsibilities:

· Team player who can collaborate with multiple stakeholders to arrive at the best solution.

· Relies on extensive experience and judgment to plan and accomplish goals. Works independently to solve problems quickly and completely

· Experience in supporting, monitoring, testing, and troubleshooting hardware and software IA problems

· Provides objective advice and specialized skills in order to create value, maximize growth or improve performance, resiliency and protection against cybersecurity related threats, vulnerabilities, and other cybersecurity related remediation activities.

· Participates in consulting projects that deliver customer focused results aligned with strategic goals of the Client.

· Facilitates review and analysis of strategic issues and advises regarding implementation of strategy.

· May assist in conducting education classes. May provide support in the following areas: guidance to resolving issues, analysis of trends and issues, development of procedures and processes, oversight of technical implementation and execution of strategic plans.

Required Qualifications:

US Citizenship and ability to pass an extensive background check and obtain a Public Trust

Education/General Experience:

No Degree: 12 years of general experience, 10 years must be in Cybersecurity & FISMA experience;

Bachelor’s Degree: 8 years of Cybersecurity & FISMA experience;

Master’s degree: 6 years of Cybersecurity & FISMA experience;

Must Possess one of the following professional security certifications:

• Certified Information System Security Professional (CISSP)

• CompTIA Advanced Security Practitioner (CASP)

• Certified Information Systems Auditor (CISA)

• Certified Information Security Manager (CISM)

• GIAC Security Leadership (GSLC)

Duties:

• Applies extensive knowledge of a variety of the Cybersecurity field’s concepts, practices, and procedures to ensure the secure integration and operation of all systems.
• Applies extensive experience with the implementation of the NIST SP 800 family of publications, particularly those associated with NIST’s Risk Management Framework and FedRAMP.
• Applies extensive specialized knowledge of financial audit standards, classified system IA requirements and Privacy Act requirements.
• Applies extensive experience with evaluating system, network, or infrastructure security controls against requirements such as FISMA, FIPS, and NIST guidelines.
• Applies extensive knowledge and experience with all the following criteria:
• Vulnerability scanning execution, assessment, and analysis
• Operating system and network knowledge (i.e., Local Area Networks [LAN] and Wide Area Networks [WAN])
• Information security and assurance principles (e.g., Defense-in-depth) and associated supporting technologies
• Application security, database security, and network security
• Relies on extensive experience and judgment to plan and accomplish goals.
• Works independently to solve problems quickly and completely.

235091741