Information System Security Officer (ISSO)
Description
Job Title: Information System Security Officer (ISSO)
Req ID: 2454
Location: Ft. Meade, MD/Hybrid
Minimum Clearance: Secret
Certification(s): Security+ CE or ability to obtain one within 90 days
SuprTEK is looking for an experienced ISSO to join our Secure Configuration Management (SCM) team in the National Capital Region supporting DISA (i.e., 5 year contract).
The SCM portfolio provides for the integration and optimization of enterprise Information Assurance (IA) applications, tools, and data standards to support automated processes used in support of cyber blue force tracking, risk management, near-real time awareness of devices and software inventory and configurations. SCM enables Information System Monitoring as part of the Department of Defense (DoD) Continuous Monitoring Strategy – supporting the initial data sets of assets, system configurations, and vulnerabilities (Federal Information Security Management reporting requirements). The program leverages inherent SCM capabilities used within combatant commands, services, and agencies (CC/S/As) and provides pervasive enterprise capabilities and interfaced automated capabilities based on common data standards (e.g., Security Content Automation Protocol (SCAP)) to enhance CC/S/As ability to identify assets, check system configuration compliance against policies and standards, search for potential vulnerabilities, act on known vulnerabilities for known risk posture for systems/networks and report status and share information on a need to know basis.
JOB RESPONSIBILITIES
Primary responsibility for supporting and achieving the Assessment & Authorization (A&A) for the EPMS repository and cybersecurity capabilities/system in support the SCM contract and suite of applications working with the Software Development team, engineering team and DISA RME and the DoD FSO organization using NIST RMF Standards
Responsible for creating and maintaining POAMs (Plan of Action Milestones) for the remediation of CAT 1/CAT 2 findings.
Responsible for taking new systems/capabilities through the entire A&A cycle including supporting documentation/STIGS/POAMS and eMASS packages for approval by the AO
Responsible for reviewing IAVAs for applicability to the SCM components working with the engineering team.
Responsible for reviewing Fortify/Web Inspect scans on software code and determining CAT 1/CAT 2 findings for remediation with the development team
Responsible for maintaining the A&A posture of the system by inspecting IAVAs and determining the applicability of available patches to the system and working with the system engineers to communicate findings
Responsible for periodic reviews of the SCM portfolio and addressing new findings
Responsible for supporting periodic/yearly government security audits
Responsible for validating the application STIGS to the SCM components/systems
Collaborate with a team of IA specialists
Follow through with program CR’s within a CCB platform.
JOB REQUIREMENTS
- Bachelor’s Degree required
- Must be able to obtain a DoD security clearance of Secret or above
- Must have and be able to maintain Security+ CE certification
- 5 years of similar industry experience in a similar role
- Prior work experience with DISA/DOD highly desirable
- Past working knowledge of eMASS, ACAS, and Fortify or equivalent
About SuprTEK
Since 1996, SuprTEK has performed exceptionally well on a multitude of DoD and government agency contracts. SuprTEK is an IT Engineering and Professional Services firm focused on helping the DoD and government agencies assure mission success by delivering exceptional solutions with proven results. With corporate headquarters in Ashburn, VA, SuprTEK has a strong presence in the St. Louis Metro East with its Solution and Engineering Delivery business unit, which is currently fulfilling several contracts associated with Scott AFB. SuprTEK is geographically dispersed supporting many successful contracts throughout the DC Metro Area.
SuprTEK does not require employees to be fully vaccinated against COVID-19; however final vaccination requirements will depend on customer site requirements.
SuprTEK provides competitive compensation and a comprehensive benefits package (Including but not limited to Health, Dental & Vision, 401(k) match, Training, and PTO). We have recently won #124 place of the Top 500 Fastest Growing Companies rated by Inc. Magazine and Comparably’s Top Workplace awards, including Best Perks and Benefits, Best Company Culture, Best Company Compensation, Best CEO’s for Diversity, Best CEO’s for Women, Best Company Outlook and Best Place to Work in the DC Metro Area.
SuprTEK is an Equal Opportunity Employer