Information System Security Officer (ISSO) at ECS FEDERAL LLC in Quantico, Virginia

Job Description:

ECS is seeking an
Information System Security Officer (ISSO) to work in our
Quantico, VA office.  

ECS is seeking an Information Systems Security Officer (ISSO) – Mid Level to work remote and occasionally in our Quantico, VA office.

ECS is seeking an ISSO to join a team of experts charged with providing RMF support to the Marine Corps Community Services (MCCS) organization.  MCCS supports readiness, preparedness, fitness, health, and overall quality of life for Marines and their Families around the world.  This is a remote position, requiring two days at the Customer’s location in Quantico, VA.

In this role, you’ll perform Information Systems Security Officer functions, including supporting the certification and accreditation of computer networks and standalone information systems using DoD standards and provide oversight and accountability of day-to-day security operations of all the information systems (unclassified/classified).

Specific tasks you will perform as an Information Systems Security Officer include, but are not limited to:

• Spearheading Authority to Operate (ATO) efforts while making independent recommendations to Government Leads during these processes


• Understand Risk Management Framework (RMF), and how risk management is executed, what risk means, and how to analyze it


• Be familiar with NIST 800-53


• Develop documentation to include, but not limited to, Plan of Action and Milestones, System Security Plans, System Specific Policies and Procedures, Configuration Management Plans, Contingency Plans and Test Results, Business Impact Analyses, and Security Impact Analyses


• Prepare, maintain, and implement System Security Plans that accurately depict the customer’s contractual requirements


• Support all disciplines within the security program and ensure business needs are met. Work directly with PMs and system security engineers on all phases of system life cycle development


• Conducts ongoing vulnerability testing of the information system to verify security features and operating controls are functional, effective and meet Government standards.


• Interacts with internal and external customers or Government security officials to perform security duties, address routine information security matters with employees regarding issues, report preparation and system security access briefings, etc.


• Assists Information Systems Security Manager in reporting and mitigation of information system security incidents