ECS is seeking an Information Systems Security Officer (ISSO) - Senior to work in our Quantico, VA office.
Job Description:
ECS is seeking a Senior ISSO to join a team of experts charged with providing RMF support to the Marine Corps Community Services (MCCS) organization. MCCS supports readiness, preparedness, fitness, health, and overall quality of life for Marines and their Families around the world. This is a hybrid position, requiring two days on-site at the Customer's location in Quantico, VA.
In this role, you'll perform Information Systems Security Officer functions, including supporting the certification and accreditation of computer networks and standalone information systems using DoD standards and provide oversight and accountability of day-to-day security operations of all the information systems (unclassified/classified).
Specific tasks you will perform as an Information Systems Security Officer include, but are not limited to:
Spearheading Authority to Operate (ATO) efforts while making independent recommendations to Government Leads during these processes
Understand Risk Management Framework (RMF), and how risk management is executed, what risk means, and how to analyze it
Develop documentation to include, but not limited to, Plan of Action and Milestones, System Security Plans, System Specific Policies and Procedures, Configuration Management Plans, Contingency Plans and Test Results, Business Impact Analyses, and Security Impact Analyses
Prepare, maintain, and implement System Security Plans that accurately depict the customer's contractual requirements
Support all disciplines within the security program and ensure business needs are met. Work directly with PMs and system security engineers on all phases of system life cycle development
Conducts ongoing vulnerability testing of the information system to verify security features and operating controls are functional, effective and meet Government standards.
Interacts with internal and external customers or Government security officials to perform security duties, address routine information security matters with employees regarding issues, report preparation and system security access briefings, etc.
Assists Information Systems Security Manager in reporting and mitigation of information system security incidents
Required Skills:
U.S. Citizenship
Active DoD Secret Clearance
8+ years' experience with a bachelor's degree, or 6-8 years' experience with a master's degree, or 5 years' experience with a PhD
A current DoD 8570 IAM Level II certification (CAP, CASP CE, CISM, CISSP, GSLC)
Strong background in obtaining and maintaining ATO's for DoD or U.S. Federal Government organizations, including experience executing the NIST Risk Management Framework (RMF) and applying security practices found in NIST publications. (i.e. SP 800-53, SP 800-30, SP 800-60, FIPS 199, FIPS 140-2, etc.)
A self-starter who's able to work in both independent and team environments while building work relationships with SMEs across divisions. Additionally, must be comfortable with cyber security and able to brief issues to the customer.
The ability to articulate and provide a true and accurate status update on government IT system security postures as well as overall system health to the customer in a clear and concise manner
Desired Skills:
USMC RMF support experience
MCCAST (Marine Corps Certification and Accreditation Support Tool) experience
Experience with SAFe Agile tools like Jira, Jira Align, or ServiceNow.
Certifications such as CISSP, CCSP, CISA, or CAP
ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, sex, age, sexual orientation, gender identity or expression, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, status as a crime victim, disability, protected veteran status, or any other characteristic protected by law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.
ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3800+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.