Information System Security Officer

TekSynap

  • Fort Belvoir, VA
  • Permanent
  • Full-time
  • 15 days ago
Responsibilities & QualificationsWe are seeking an ISSO to support the Defense Threat Reduction Agency. TekSynap is a fast-growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well-planned information management environment. "Technology moving at the speed of thought" embodies these principles - the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers. We offer our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays.The Defense Threat Reduction Agency (DTRA) safeguards the United States and its allies from global Weapons of Mass Destruction (WMD) threats by integrating, synchronizing and providing expertise, technologies and capabilities. OI-MSC is responsible for Security management for DTRA. DTRA Security programs include Physical, Industrial, Personnel, Operations (OPSEC), Information Security, Science and Technology Protection (S&T), Antiterrorism/Force Protection, Special Access Program (SAP), Insider Threat, Foreign Disclosure (FD), Technical Surveillance Countermeasures (TSCM); and the Special Security Office (SSO) under Intelligence Community Directives (ICD)TekSynap aides DTRA in its mission to safeguard the United States and its allies from global weapons of mass destruction and improvised threats by integrating, synchronizing and providing expertise, technologies and capabilities. We support the Chief Information Officer (CIO) in transforming how the agency uses knowledge, technologies, and capabilities to meet the DTRA mission. TekSynap supports in excess of 5,000 world-wide Agency customers utilizing Unclassified, Secret, and Top Secret/Special Compartmented Information (TS/SCI) networks. TekSynap continually strives to improve the confidentiality, integrity and availability (CIA) of DTRA IT systems, modernize the security infrastructure to maintain and improve compliance with DoD mandates and INFOCON requirementsAs an Information Systems Security Officer (ISSO), the candidate will serve as the designated ISSO to support OI-MSC, as appointed by the Information Systems Security Manager (ISSM) or the Government. The ISSO will ensure the cybersecurity posture of mission IT enclaves and networks in compliance with DTRA enterprise governance, DoD, and Intelligence Community (IC) cybersecurity frameworks, instructions, and directives. Key responsibilities include:
  • Ensure adherence to DoD and IC Risk Management Frameworks (RMFs), including DoDI 8500.01, DoDI 8510.01, ICD 503, and NIST standards (e.g., NIST 800-37 Rev 1, NIST 800-53 Rev 4).
  • Maintain compliance with cybersecurity warnings, Technical Orders (TOs), DISA Computer Network Defense (CND) requirements, DoD Security Technical Implementation Guides (STIGs), and Information Assurance Vulnerability Alerts (IAVAs).
  • Perform on-site cybersecurity operations and defense activities for OI-MSC enclaves and infrastructure in coordination with the Cybersecurity Service Provider (CSP) and parent organization cybersecurity functions.
  • Detect, prevent, and mitigate intrusions, and support incident response, computer emergency response, and forensic investigations.
  • Provide cybersecurity technical support to patching, remediation, and Plan of Action and Milestones (POA&M) activities for OI-MSC mission IT infrastructure and production systems. Coordinate with the Authorizing Official (AO), Cybersecurity, and Independent Verification and Validation (IVV) Teams as needed to ensure cybersecurity support.
  • Maintain Authority to Operate (ATO) status by ensuring security and software upgrades/modifications, patching, remediation, and POA&M activities.
  • Resolve system vulnerabilities based on risk levels:
  • High Risk: Resolved within 30 days of discovery.
  • Moderate Risk: Resolved within 60 days of discovery.
  • Low Risk: Resolved within 90 days of discovery.
  • Manage system security data in DoD IT Information Systems (e.g., CMRS, eMASS) and complete monthly DoD information security Scorecard reports.
  • Develop, deliver, and maintain security-related artifacts, including System Security Plans (SSPs), POA&Ms, Risk Assessment Reports (RARs), Security Assessment Reports (SARs), and Security Impact Assessments (SIAs).
  • Draft and maintain Cybersecurity Policies and Procedures, Administrative Guides, and Technical Documentation.
  • Provide technical support for risk assessments, risk determinations, and Cybersecurity Impact Assessments to support ISSM, Security Controls Assessor (SCA), and Authorizing Official (AO) risk decisions.
  • Work with IT staff to develop and document IT security procedures that align with DTRA security policies and DoD RMF.
  • Provide security engineering and design guidance throughout the Software/System Development Lifecycle (SDLC).
  • Deliver technical briefings and presentations to DTRA and OI-MSC leadership, supporting security operations-related meetings and decision-making processes.
  • Assist with IT change management and provide information security recommendations to ensure alignment with cybersecurity policies and RMF requirements.
  • Coordinate incident responses with DoD and IC cybersecurity authorities, DTRA’s Cybersecurity Service Provider (CSSP), and other relevant organizations.
  • Perform manual and automated cross-domain data transfers, scans, and reviews in response to user requests and Government direction.
  • Support DTRA Emissions Security (EmSec) and physical security efforts, including coordination with physical security personnel.
  • Assist Government efforts in preparation, engagement, and successful outcomes of DoD and IC cybersecurity inspections and tests.
REQUIRED QUALIFICATIONS
  • Bachelor's degree with 8-10 years of relevant experience. Additional years of related experience, certification, and/or training may be accepted in lieu of a degree.
  • Information Assurance Manager (IAM) Level II and hold one or more of the following certifications:
  • CAP
  • CASP CE
  • CISM
  • CISSP (or equivalent)
  • GSLC
  • Highly knowledgeable of the entire DoD RMF and ATO process
  • Minimum of a Top Secret clearance with the ability to obtain SCI
  • Strong verbal and written communication skills.
  • Experience coordinating with support teams, both internal and external, to respond to incidents.
OverviewWe are seeking an Information Systems Security Officer to support our Prime Contract at Fort Belvoir, VA.TekSynap is a fast-growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. “Technology moving at the speed of thought” embodies these principles – the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers.We offer our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays.Visit us at .Apply now to explore jobs with us!The safety and health of our employees is of the upmost importance. Employees are required to comply with any contractually mandated Federal COVID-19 requirements. More information can be found .Additional Job InformationWORK ENVIRONMENT AND PHYSICAL DEMANDSThe work environment characteristics described here are representative of those an employee encounters while performing the essential functions of the job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
  • Location: Fort Belvoir, VA
  • Type of environment: Office
  • Noise level: Low
  • Work schedule: Schedule is day shift Monday – Friday. May be requested to work evenings and weekends to meet program and contract needs.
  • Amount of Travel: 10%
PHYSICAL DEMANDSThe physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.While performing the duties of this job, the employee is regularly required to use hands to handle, feel, touch; reach with hands and arms; talk and hear. The employee is regularly required to stand; walk; sit; climb or balance; and stoop, kneel, crouch, or crawl. The employee is regularly required to lift up to 10 pounds. The employee is frequently required to lift up to 25 pounds; and up to 50 pounds. The vision requirements include close vision, distance vision, peripheral vision, depth perception, and ability to adjust focus.WORK AUTHORIZATION/SECURITY CLEARANCEUS CitizenshipTop Secret/SCI ClearanceOTHER DUTIESPlease note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.EQUAL EMPLOYMENT OPPORTUNITYIn order to provide equal employment and advancement opportunities to all individuals, employment decisions will be based on merit, qualifications, and abilities. TekSynap does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age, genetic information or any other characteristic protected by law (referred to as “protected status”). This nondiscrimination policy extends to all terms, conditions, and privileges of employment as well as the use of all company facilities, participation in all company-sponsored activities, and all employment actions such as promotions, compensation, benefits, and termination of employment.

TekSynap