Own Your Future. Modern Technology Solutions, Inc. (MTSI), is seeking a Senior Information Systems Security Officer (ISSO) to support the Naval Surface Warfare Center (NSWC), Crane Division in support of Hypersonics Advanced Concepts and Strategic Missions in Crane, Indiana.
You will enable the transformation of our cloud adoption and operations practices. Candidate must have a strong understanding of cloud services and collaborate with a group of cross-functional application developers, infrastructure engineers, and security specialists to promote cloud-first architecture and implementations.
Responsibilities:Overview of the ISSO's roles and responsibilities: *Note, this position may require up to 20% travel within CONUS.
Perform day-to-day maintenance of systems, including auditing and patch managementPerform technical security assessments of complex systemsIdentify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategiesApply knowledge of IA policy, procedures, and workforce structure to implement secure networking, computing, and enclave environmentsWrite authorization and accreditation (A&A) documentation and ensure the systems are operated and maintained in accordance with these security plansEnforce the design and implementation of trusted relationships among external systems and architecturesSupport security planning, assessment, risk analysis, and risk management for client systems and programsInteract with technical team members from multiple organizations in a diversified, team environmentIdentify overall security requirements for the proper handling of client dataPerform system or network designs that encompass multiple enclaves to include those with differing data protection/classification requirementsRecommend system-level solutions to resolve security requirementsEnsure all users have the requisite security clearances, authorizations, need-to-know, and are aware of their security responsibilities before granting access to client systemsConduct periodic reviews of information systems to ensure compliance with the security authorization packagePerform key functions (above) and other security-related tasks as directed on multiple systems, at multiple sites, or for multiple clients.Qualifications:Required Education and Experience: AS degree from an accredited university including classes in Computer Science, Information Assurance, Information Security Systems Engineering, or related fieldsFive (5) years of experience working in a cybersecurity or related fieldRequired Clearance: Must have an Active Secret Clearance with ability to obtain TS/SCI; US Citizenship required
Required Certifications: Must meet position and certification requirements outlined in the DoDD 8570.01-M for Information Assurance Technician (IAT) level 2 and Information Assurance Manager (IAM) level 1CISSP or certifications in one or more of the following: CompTIA Security+, GIAC Industrial Cyber Security Certification (GICSP), GIAC Security Essentials (GSEC), GIAC Cyber Security Leadership (GSLC), or ISC2 Systems Security Certified Practitioner (SSCP)Required Skills: Experience with both Windows- and Linux-based operating systemsExpert knowledge of federal security requirements and mandates (e.g., RMF, Federal Information Processing Standards (FIPS), National Standards of Information Technology (NIST))Experience working on DISA Security Technical Implementation Guide (STIG) implementation across multiple operating systems and applicationsMust be a team player and be able to work within all levels of a project teamExcellent time management, scheduling, and organizational skillsAbility to work well independently as well as follow detailed instructions for completing tasksDemonstrated ability to complete tasks, drive projects to closure, assimilate and correlate project information in a fast-paced environmentDemonstrated ability to shift from one project to another in a dynamic, agile work environmentExcellent oral and written communication skills and ability to clearly translate client technical needs into technical specificationsAbility to communicate technical approaches and details within small project teams, including team interactions and presentationsFamiliarity with security procedures while working in a SCIF/SAPF environment.
#J-18808-Ljbffr