*This is 40 hour per week long-term renewing contract supporting Federal Clients*
REQUIRED SKILLS AND EXPERIENCE • In depth knowledge of ICD 503 and NIST SP800-53 Information Systems requirements • Strong experience implementing DISA STIGs • In depth knowledge of various WINDOWS, UNIX, LINUX, AWS • In depth knowledge of various compliance tools, i.e. Ansible, NESSUS, HBSS, Splunk • Minimum 5 years experience as an ISSO • Strong communications skills, both oral and written • Commitment to excellence, creating and delivering the highest value to customers • Ensure that all SNOW records are updated and maintained • Develop and resolve Plan of Action & Milestones (POA&M), as required • Professional Certifications/Affiliations (CISSP, Security+, CASP, CCNA, etc.) • Able to travel periodically to other Cisco locations for 1-3 days at a time • DoD 8570 Industry Certification in one or more of the following: CISSP, Security+, CISA, GSEC, CAP, SCNA, SCNP, SSCP, GSLC, GSE, CISM
Required Education (including Major): Bachelor's degree in Computer Information Systems/Computer Science, or 5 years experience in related technical subject area
Working under the direction of the Information Systems Security Manager (ISSM), the candidate will act as an Information System Security Officer (ISSO). The candidate must have an in-depth knowledge of the Intelligence Community Directive (ICD) 503 and the Risk Management Framework process.
- The ISSO will plan, manage, coordinate and provide support to various programs to ensure that the completion of all Assessment and Authorization (A&A) activities per ICD 503, NISTs, CNSSI and other DoD and/or Intelligence Community policies.
- The candidate will be responsible for the life cycle of Information Systems, to include but not limited to, meeting with program management to assist in developing requirements for Information Systems, creating the System Security Plans (SSP), reviewing/monitoring the technical security features to ensure compliance with regulations, submitting for Authorization, and meeting with government security representatives.
- Once Authorized, the ISSO will maintain compliance with all applicable CONMON requirements, conducting weekly audits, vulnerability scanning, briefings, System Security Plans, and all deliverables as required.
- The ISSO will also be responsible for all Authorized Information Systems during annual audits/reviews/inspections.
- The candidate will also require an understanding of COMSEC and COMSEC related equipment.
*Pay will range from $75-95/hr on W2 based on experience*