Sevatec Inc.

Information Systems Security Officer

US-MD-Silver Spring
3 weeks ago(12/26/2017 9:39 PM)
Job ID
2017-1264
# of Openings
1
Category
Information Technology

Overview

Sevatec is seeking to hire an Information Systems Security Officer (ISSO) for a short term assignment supporting a NOAA client in Silver Spring, MD. This person will be responsible for security support to several sub-systems and will be responsible for making recommendations and implementing improvements and standards across the NOAA Cyber Security Center. 

Responsibilities

  • Develop and maintain System Security Plans (SSP); ensure systems are operated, maintained, and disposed of in accordance with SSPs; ensure configuration management is maintained and documented.
  • Manage access to the systems and ensure users are aware of their security responsibilities; conduct periodic reviews to ensure compliance with the SSPs.
  • Will work special security issues and interact with sub-system management.
  • Must have sufficient technical experience to implement security requirements outlined in SSP's.
  • Will assist in compliance inspections and reviews and conduct audits as required. Training/briefing experience is desired.
  • Shall provide quarterly briefings of all SLAs, inventory and security documents and will be required to provide all necessary reports, documentation and presentation for Authority To Operate (ATO) briefings to System Owner (SO). 
  • Will work closely with the System Administrator(s) to maintain the system's security and accreditation status.
  • Ensure implementation of security measures by conducting security reviews and system tests.
  • Must be able to respond to off-hour emergencies as needed. Must have demonstrated ability to follow-up and solve problems.
  • Position may require some local and overnight travel. 

Qualifications

  • AS/BS degree in Computer Science, Information Technology, Computer Information Systems, or related field.
  • At least five (5) years of IT experience with three(3) years concentrated in IT Security.
  • At least one (1) year of National Institute of Standards and Technology (NIST) Security Assessment & Authorization (SA&A) processes and risk/vulnerability management experience.
  • Must have at least 1 of the following IT Security related Certifications: CompTIA Security+, CompTIA Network+, CompTIA Security+, GIAC Certified Incident Handler (GCIH), GIAC Security Essentials Certification (GSEC), GIAC Security Expert (GSE), GIAC Information Security Professional (CAP), System Security Certified Practitioner (SSCP), Certified Information System Security Professional (CISSP),  Certified Information System Security Associate (CISSA), Certified Information System Auditor (CISA), Certified in Risk and Information System Control (CRISC),  Security Certified Program Security Certified Network Professional (SCNP), or Security Certified Program Security Certified Network Architect (SCNA). 
  • Technical experience and skills in securing multiple operating systems such as Windows Server 2003/2008, Windows XP, Windows 7 and virtualization technologies; with emphasis on experience with Red Hat Linux, Unix, and Solaris.
  • Familiarity with NIST 800-53 Rev4 is desired.
  • Demonstrated capabilities in presenting ideas written and orally with strong analytical and organization skills.
  • Shall be capable of working independently as well as part of a larger group under minimal/moderate supervision.

 

Security Clearance:  Secret clearance is required. Candidates with active Top Secret clearance and SCI eligibility desired. 

 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed