Requisition #: INFOR003743

Job Title: Info Sys Sec Officer

Location: 6910 Cooper Ave Fort Meade, Maryland 20755 (Hybrid)

Clearance Level: Active DoD - Secret

Required Certification(s):

• Must possess IAM level II Certification (CAP, CASP+, CE, CISM, CISSP (or Associate), GSLC, CCISO).

SUMMARY
IAM II certified Information Systems Security Officer (ISSO). Participates in risk assessment and design security countermeasures to mitigate identified risks during the Certification and Accreditation process. Design, develop, implement, and integrate information assurance architecture, system, or system component for use within data center, network, and enclave environments. Assess threats to the environment and provides input on the adequacy of security designs and architectures. Utilize experience and judgment to plan and accomplish goals. The ISSO will ensure the programs retain their Authority To Operate (ATO) and submit all applicable Risk Management Framework (RMF) packages in the Enterprise Mission Assurance Support Service (eMASS) system.

A mid to senior level Information Systems Security Officer (ISSO) with a strong background in the Risk Management Framework and a thorough understanding of the control families. Able to quickly identify the need for and develop detailed POA&M's and a strong command of the required documentation to support long term Authorities to Operate (ATO's). Comfortable presenting findings, current status and way ahead for completing ATO submissions.

JOB DUTIES AND RESPONSIBILITIES

• Develop, maintain and submit Risk Management Framework (RMF) security documentation packages for the purpose of obtaining Authorization to Operate (ATO) and Authorization to Connect (ATC) certifications as required by the government.
• Provide weekly, bi-weekly and monthly status reports, containing status and performance metrics for each ATO package under the contract.
• Assess Plan of Action and Milestones (POA&M) individual corrective action implementation for demonstration that security controls have been implemented correctly and effectively, validating corrective action and/or mitigating factors.
• Establish, maintain and collect, and update annually, the RMF Standard Operating Procedures (SOPs) and Tactics, Techniques and Procedures (TTPs), and corresponding artifacts.
• Support the CONOPS Knowledge Management Data Repository and briefing slide decks.
• Lead weekly meetings with the IDSS/EPUAS RMF Team to review outstanding action items, develop a plan for addressing ATO findings and obtain approval for any potential changes to the organization’s IA baseline.
• Other duties as required to obtain and maintain Accreditation for multiple ATO’s.

SUPERVISORY DUTIES

• No direct supervisory but must be able to assign tasks and deadlines.

QUALIFICATIONS
Required Certifications

• Must possess IAM level II Certification (CAP, CASP+, CE, CISM, CISSP (or Associate), GSLC, CCISO).

Education, Background, and Years of Experience

• Bachelor's degree in related field (e.g. Computer Management Information Systems, Computer Science) and five (5) years related experience.
• Five (5) years of information security experience.
• At least four (4) years independently performing System Assessment and Authorization in accordance with NIST guidelines.

ADDITIONAL SKILLS & QUALIFICATIONS
Required Skills

• Experience performing the full cycle of system Assessment and Accreditation (A&A) activities.
• Excellent working knowledge of the National Institute of Technology (NIST) Risk Management Framework (RMF).
• Solid technical background with strong understanding of network architectures and communications, operating systems, web platforms, and databases.
• Experience developing and maintaining system security documentation, including but not limited to System Security Plans, Security Assessment Reports, Contingency Plans, and Interconnection Security Agreements.
• Experience developing and updating Plans of Actions and Milestones (POA&Ms) and overseeing efforts to rectify issues found as a result of security vulnerabilities and security controls analysis.

Preferred Skills

• Experience with iAssure Templates
• Converting older DIACAP to RMF via iAssure Templates.

WORKING CONDITIONS
Environmental Conditions

• Currently operating fully remote with the exception that ALL classified work will be done at a Government facility: DISA Headquarters, 6914 Cooper Avenue, Fort Meade, MD 20755. Only unclassified work will be completed at alternate locations.

Strength Demands

• Sedentary – 10 lbs. Maximum lifting, occasional lift/carry of small articles. Some occasional walking or standing may be required. Jobs are sedentary if walking and standing are required only occasionally, and all other sedentary criteria are met.

Physical Requirements

• Stand or Sit; Repetitive Motion; See

About Us!

Agile Defense provides leading-edge Digital Transformation solutions to support and advance our customers' mission. We deliver innovative and high-quality services to our customers worldwide through an empowered and engaged workforce.

Employees of Agile Defense are our number one priority, and the importance we place on our culture here is fundamental. Our culture is alive and evolving, but it always stays true to its roots. Here, you are valued as a family member, and we believe that we can accomplish great things together. Agile Defense has been highly successful in the past few years due to our employees and the culture we create together. We believe several attributes are the root of our very best employees and extraordinary culture. We have named these attributes “The 6 H’s” – Happy, Helpful, Honest, Humble, Hungry, and Hustle.

• Happy: We exhibit a positive outlook in order to create a positive environment.
• Helpful: We assist each other and pull together as teammates to deliver.
• Honest: We conduct our business with integrity.
• Humble: We recognize that success is not achieved alone, that there is always more to learn, and that no task is below us.
• Hungry: We desire to consistently improve.
• Hustle: We work hard and get after it.

These Core Values are present in all our employees and our organization's aspects. Learn more about us and our culture by visiting us here.

COVID-19 Vaccination Requirements

Agile Defense is subject to federal vaccine mandates or other customer/facility vaccination requirements as a federal contractor. As such, to protect its employees' health and safety and comply with customer requirements, Agile Defense may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.