Job Details

The ISSO is responsible for the day-to-day security operations, documentation, and continuous monitoring of classified information systems (IS) to ensure they maintain an Authorization to Operate (ATO).
 Essential Functions:
• Serves as the principal advisor to the ISSM (and the System Owner) on technical and non-technical security matters for assigned specific system(s).
• Ensure the confidentiality, integrity and availability of classified Information Systems (IS) and data using Air Force approved network engineering practices, information security standards and approved industry best practices.
• Lead the RMF process for assigned classified systems, including system categorization and selection of NIST SP 800-53 Rev. 5 security controls.
• Conduct weekly system audits, review audit logs for anomalies, and analyze vulnerability scans from tools like ACAS (Nessus) and SCAP Compliance Checker for compliance.
• Develop and maintain the Body of Evidence (BoE), including System Security Plans (SSP), Plan of Action and Milestones (POA&M), and Incident Response Plans.
• Provide cybersecurity support for various test area systems to include real-time computers, standalone systems and networked systems.
• Evaluate new technologies, hardware and software prior to implementation within the organizational environment.
• Provide cybersecurity support for application development, planning, network implementation, systems integration, communication support, computer-communication maintenance, asset management and security controls.
• Oversee security-relevant changes to hardware, software, and firmware, ensuring all modifications are vetted through an approved Configuration Management Plan process and documented within the SSP.  Requirements:
• Bachelor's or Master's degree in Computer Science or other relevant field with 3 – 10 years' experience. Experience may be substituted for education with government approval.
• Certification: Must meet position and certification requirements outlined in DoDM 8140.03 for Information Assurance Manager (IAM) Level 1. (i.e., Security + CE certification)
• Knowledge and expertise in Cybersecurity requirements, network technologies, and computer security as applied to Department of Defense (DoD) networks.
• Experience with DISA STIGs, SCAP Compliance Checker (SCC), STIG Viewer, Host Base Security System, and Assured Compliance Assessment Solution is preferred
• Experience developing SOPs and SSPs.
• Basic understanding of Microsoft Windows and Red Hat Enterprise Linux Operating Systems (OS) environments • Basic understanding of Windows PowerShell and Python scripting desired
• Basic understanding of DNS, DHCP, TCP, UDP, Layer 2 and Layer 3
• Familiarity/proficiency with processes and functions, information technology hardware and software products, as well as, computer peripherals (e.g. printers, monitors, hard drives, docking stations, scanners, etc.).
• Excellent verbal and written communication skills along with customer interaction and presentation capabilities required.
 Security Clearance:
• Must hold an active Department of Defense (DoD) Top Secret Security Clearance with last investigation within 5 years.
• Exceptionally qualified candidates will be considered with a current Secret Clearance for upgrade to Top Secret.