Intermediate ISSO at Saliense

Arlington, Virginia, United States -

Full Time

Start Date

Immediate

Expiry Date

11 Jun, 26

Salary

0.0

Posted On

13 Mar, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Information System Security Policy, Security Control Assessments, POA&M Management, System Authorizations, Configuration Management, System Analysis, Vulnerability Assessment, Risk Assessment, Network Security, Product Evaluation, Security Implementation, RMF, NIST Cybersecurity Framework, CSAM, NIST Special Publications, FISMA Audit Requirements

Industry

Description

Who is Saliense? Saliense is a growing Management and Technology Consulting Solutions provider based out of Mclean, VA. We work to solve our client’s toughest challenges within the Defense, Civilian, Financial, and Healthcare industries. Our diverse employees support vital missions for government and commercial customers. For more information, visit www.saliense.com. Why Saliense? In addition to providing a fun, energetic environment that promotes innovation and personal growth, we offer excellent compensation packages with plenty of opportunities for advancement. We pay 100% of the premiums for employee Healthcare, including medical, dental, and vision. We offer a 401K match, and all company contributions are 100% vested immediately. Since we believe in work-life balance so much, we offer 20 days of paid leave per year. Use it as you need it or use it all at once and go travel for a month! We are proud to offer parental leave. There are many more - connect with us to get a preview of the full benefits package. Position Title: Cybersecurity Intermediate ISSO Location: One day onsite Responsibilities: The Information System Security Officer (ISSO) supports work performed under the contract possessing a substantial level of knowledge of federal information system security policy, industry best practices, security control assessments, Plan of Action and Milestones (POA&M) management, system authorizations, configuration management, and system analysis. Responsible for designing and implementing solutions for protecting the confidentiality, integrity, and availability of sensitive information. Possesses substantial knowledge of federal information system security policy, industry best practices, security control assessments, Plan of Action and Milestones (POA&M) management, system authorizations, configuration management, and system analysis. Serves as a recognized information security expert in the areas of vulnerability assessment, risk assessment, network security, product evaluation, and security implementation. From a technical perspective the Information System Security Officer is responsible for designing and implementing solutions for protecting the confidentiality, integrity, and availability of sensitive information. Provides technical evaluations of customer systems and assists with making security improvements. Participates in the design of information system business impact analysis, system categorization, contingency plans, privacy documents, and other system security documentation to maintain appropriate levels of protection and meet requirements for minimizing operational impact to the enterprise. Conducts testing and audit log reviews to evaluate the effectiveness of current security measures. Conducts security product evaluations, and recommends products, technologies, and upgrades to improve the customer’s security posture. Certifications: Minimum Educational Requirements: BS/BA in Computer Science, Information Systems, Engineering, Business, Physical Science, or other technology-related discipline. Professional certs: IAT Level III, CISM, CASP+ Requirements: Minimum of 7 years of knowledge of federal information systems security experience Experience with RMF and applying the NIST Cybersecurity Framework Possesses substantial knowledge of federal information system security policy, industry best practices, security control assessments, Plan of Action and Milestones (POA&M) management, system authorizations, configuration management, and system analysis Experience designing and implementing solutions for protecting the confidentiality, integrity, and availability of sensitive information A technical expert providing technical support in the areas of vulnerability assessment, risk assessment, network security, product evaluation, and security implementation Experience designing and implementing solutions for protecting the confidentiality, integrity, and availability of sensitive information Experience using CSAM Solid understanding and application of NIST Special Publications including SP 800-53, SP 800-137, SP 800-171, and SP 800-37 Solid understanding of FISMA audit requirements Solid understanding of IT audit requirements Ability to work with cooperatively and at a technical level with developers, engineers, and managers on system teams Knowledge of computer networking concepts, protocols, and network security methodologies Knowledge of risk management processes and tools (e.g., methods and tools for assessing and mitigating risks) Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy in a federal environment Knowledge of current and past cybersecurity threats and vulnerabilities

Responsibilities

The Information System Security Officer (ISSO) supports work requiring substantial knowledge of federal information system security policy, best practices, and system authorizations, focusing on designing and implementing solutions to protect sensitive information confidentiality, integrity, and availability. Responsibilities include serving as a security expert in vulnerability and risk assessment, conducting security product evaluations, and participating in system impact analyses and contingency planning.