Information Systems Security Officer (ISSO) Work Location:
Cape Canaveral, Florida Job Summary
Galapagos Federal Systems, LLC is actively seeking to fill our open Information Systems Security Officer (ISSO) contract position. The ISSO will work within a cohesive team environment and is responsible for overseeing and reporting compliance with security plans for the Government. Must be able to maintain, operate and manage, and propose changes to the Government's security program to include process, technical, administrative, configuration management, and total life-cycle support. This position shall provide the Government with recommendations and solutions for implementing AF Intelligence Community (IC) cybersecurity programs and projects. Shall adhere to AF and IC standards and those processes and further defined by the Government. Shall provide program reviews, schedules, action item updates and required procedures by established deadlines. Shall conduct timely and in-depth research for policies and processes. Shall apply IT security control requirements to address the level of security required to protect the confidentiality, integrity, and availability of system data and resources. Solutions shall be compatible with system or network hardware and software configurations and shall be approved by the configuration managers of the system and network. Recommendations shall include test plans and procedures to ensure the results support the required objectives and capabilities. Shall make edits to existing Government documents, prepare briefings as required to update the Government on the status of actions and coordinate with all project members to meet the goals and objectives of the assigned task. If required to implement a cybersecurity initiative, the Program Manager (PM) shall complete the Assessments and Authorizations (A&A) documents required to obtain an Authorization to Operate (ATO). Essential Duties and Responsibilities:
(Not listed in order of importance; other duties may be assigned) and must be able to perform the following with minimal guidance:
- Ensures the rigorous application of cybersecurity policies, principles, and practices in the delivery of all Information Technology (IT) and cybersecurity services
- Develops and designs security solutions to maintain confidentiality, integrity, and availability of information throughout the enterprise
- Identifies, plans, and documents improvements to security controls currently in place - Develops and documents recommendations and courses of action (COAs) to solve complex cybersecurity problems
- Develops and interprets cybersecurity requirements as part of the IT acquisition development process and assists in the formulation of cybersecurity/IT budgets
- Plans and schedules the installation of new or modified security hardware, operating systems, and software applications
- Ensures the assessment and implementation of identified computer and network environment fixes such as system patches and fixes associated with specific technical vulnerabilities as part of the Cybersecurity Vulnerability Management program
- Guides the implementation of appropriate operational structures and processes to ensure an effective cybersecurity program, including boundary defense, incident detection, and response
- Other duties as assigned.
Job Requirements Qualifications:
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill and ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Must be a U.S. Citizen. Education and/or Experience/Skills Required:
- Bachelor's degree in Computer Science, Cybersecurity, MIS, or related degree
- 6+ Years of experience as a Cybersecurity Developer or related functional area
- Minimum 1 year of experience using Risk Management Framework (RMF) IT security controls and policies
- Minimum DoD 8140/DoD 8570 IASAE Level II Certification
- DoD experience required.
- Working knowledge of public key infrastructure and encryption systems
- Experience working on an information security incident response team - Certified Information Systems Security Professional (CISSP)
- Familiarity with Security Technical Implementation Guides (STIG) and system security processes
- Understanding of the DoD Information Assurance Certification and Accreditation Process (DIACAP) a plus
- Experience working in CMMI Level 3 (or higher) environments is a plus.
- A track record of progressively responsible information assurance experience in one or more of the following information security areas: ICD 503 (DCID 6/3) certification and accreditation, IA system evaluations, system security penetration testing, and IA security operations/network monitoring, Intrusion Detection Systems, Intrusion Prevention Systems, Security Information Management/Security Event Management, network mapping, vulnerability scanners, firewalls, routers and other security tools
- Ability to organize, prioritize and meet deadlines.
- Capable of conveying complex information in a simplistic manner.
- Strong critical thinking and problem-solving skills.
- Strong self-starter requiring minimal supervision.
- Able to take proactive measures to prevent problems rather than reactive by nature.
- Strong verbal and written communication to effectively express concepts, plans, and proposals.
Work may involve sitting or standing for extended periods of time. Position may require typing and reading from a computer screen. Must have enough mobility, including but not limited to bending, reaching, and kneeling to complete daily duties in a timely and efficient manner. May include lifting weigh up to thirty (30) pounds, as necessary. Security Clearance:
DoD active security clearance may be required at a high-level security. Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information. Company Summary:
Headquartered in Hawaii, Galapagos, LLC is a SBA Certified NHO 8(a) Small Business specializing in global information technology and offering professional solutions in IT Design & Installation, Cybersecurity Engineering & Support, Application Integration & Development, Software & Hardware Engineering, Network & Systems Management, Information Systems Security, and Business Management Services.
Leveraging over 30 years of providing IT services to the federal & commercial market with projects located around the world, our team possesses innovative expertise in the development of a wide range of technology solutions. Galapagos, LLC is an equal opportunity employer.
Our service commitment is simple - "Quality IT Solutions... On Time & On Budget."
Galapagos, LLC reserves the right to change or modify job duties and assignments at any time. The above job description is not all encompassing. Positions functions and qualifications may vary depending on business needs.
Galapagos, LLC is an equal opportunity employer and does not discriminate against applicants based on race, color, creed, religion, medical condition, legally protected genetic information, national origin, sex (including pregnancy, childbirth or related medical condition), sexual orientation, gender identity and expression, age, disability, or Vietnam era, or other eligible veteran status or legally protected characteristics.