Senior Information Systems Security Officer (ISSO)

Suitland, MD /
Cyber Security /
Technical
/ On-site
Riptide Technology is hiring a Senior Information Systems Security Officer (ISSO). This position will be based in Suitland, Maryland. The position is required to be onsite.

The Information Systems Security Officer (ISSO) ensures the appropriate operational security posture is maintained for specific information systems to include Wide Area Networks (WANs), Local Area Networks (LANs), Cross Domain Solutions (CDSs), and standalones; developing and updating system security plans; managing and controlling changes to specific systems and assessing the security impact of those changes; incident handling; and development of information system security documentation, policies, and procedures.
 
The ISSO is responsible for providing Risk Management Framework (RMF) products that document the information system's adherence to the security controls applied. RMF products shall be delivered for information systems identified by the COR.
 
The ISSO is responsible for reporting annual Federal Information Security Modernization Act (FISMA) compliance and metrics for information systems identified by the COR. The FISMA reporting requirements will be defined annually by the COR's CIO and will focus on reporting the adequacy and effectiveness of the information security policies, procedures, and practices of the enterprise.
 
Incumbent travel requirements are approximately 10% annually to support critical business needs.

Qualifications:

    • Shall have 5 or more years experience in Information Security (INFOSEC) operations and/or Cybersecurity-related field.
    • Shall meet the minimum credential requirements for a Cyber IT/Cybersecurity Workforce (CSWF) position as defined in Section 6, Table 3.

Desired Qualifications:

    • Two or more years of experience with the Risk Management Framework (RMF) within the Intelligence Community (IC), Department of Defense (DoD), and/or Federal Systems community.
    • Two or more years of experience with using Security Information and Event Management (SIEM) products and other automated security auditing products.
    • Two or more years of experience with using vulnerability scanning products.
    • OS/CE certificate for Windows IO and Windows Server 2012/2016 or newer. 
    • OS/CE certificate for Red Hat Enterprise Linux (RHEL).
    • This position will require U.S. citizenship and an active DoD TS/SCI clearance, with a CI Poly preferred. The ability to obtain a CI poly is required.