Information System Security Officer (ISSO)
Sigmatech
- Aberdeen, MD
- Permanent
- Full-time
- Independently develop, review, and update eMASS packages in accordance with DoD and Army regulations and guidelines.
- Conduct security assessments and audits to ensure compliance with security policies and procedures.
- Coordinate with project teams to identify security requirements and implement appropriate security controls.
- Collaborate with internal and external stakeholders to address security vulnerabilities and incidents.
- Participate in security training and awareness programs for project personnel.
- Participates in the development or revision of security related policies and procedures and conducts Federal Information Security Management Act (FISMA) evaluations annually on accredited systems and completes/updates Plan of Action and Milestones (POA&Ms) as appropriate.
- Maintain documentation of security policies, procedures, and incidents.
- Stay current on emerging threats and technologies in information security.
- Bachelor’s degree or equivalent in Computer Science, Information Systems Engineering or equivalent. Four (4) additional years of relevant experience or military experience substituted for education.
- Minimum of five (5) years of experience in information systems security with extensive demonstrated proficiency in creating, reviewing, and updating eMASS packages including post accreditation/throughout the continuous monitoring stage.
- Familiarity with DoD and Army security regulations and guidelines (e.g., RMF, NIST SP 800 series).
- Strong analytical and problem-solving skills.
- Independent worker with excellent communication and interpersonal skills.
- Security certifications such as CISSP, Security+, or CISM are preferred as DoD 8570 IAT Level II certification is required.
- Ability to maintain a DoD secret (or greater) security clearance.