(Archived) Information System Security Officer (Hybrid - Orlando, FL)

Job description:

This is a hybrid position based out of Orlando, FL.

Responsibilities:

• Assisting in the development and implementation of a cybersecurity program compliant with DODI 8510.01 and DODI 8500.01 and current DoD and other Federal cybersecurity policies.
• Ensuring that all users have the requisite security clearances and access authorizations, and are aware of their cybersecurity responsibilities for DoD Information Security (IS) and systems under their purview before being granted access to those systems.
• Ensuring that all DoD IScybersecurity-relateddocumentation is current and accessible to properly authorized individuals.
• Developing and maintain all required RMF artifacts to include documentation and diagrams, security scans using approved Government scanning tools, and Plans of Action and Milestones (POA&Ms) as a result of RMF assessments.
• Resolving vulnerabilities identified as a result of security scans, apply required patches and Security Technical Implementation Guides (STIGs), perform self-assessments, and support the SCA assessment.
• Preparing and review documentation to include Systems Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
• Performing all actions required to be granted and maintain access to the appropriate certification and accreditation tool (MCCAST and/or eMASS).
• Conduct risk analyses from vulnerability, compliance scans, pen testing results, or other audit activity.
• Responding immediately tocybersecurity-relatedincidents and providing post-event analysis. Investigates intrusion incidents and conducts forensicinvestigations.
• Investigating security alerts to determine applicability to the product environment.

Qualifications:

Must Have

• 8+ years of experience supporting DoD systems accreditation, certification, and authorization processes (e.g., DIACAP, RMF), to include: assessing & mitigating risk in information systems; performing compliance auditing of information systems; developing and maintaining DoD information systems accreditation documentation.
• Thorough understanding of networks/subnetmasks/gateways/routers/VLANs.
• Experience performing DoD ACAS scans.
• Experience implementing NIST 800-53 security controls.
• Developing, applying, and assessing secure technical baselines for various applications and products (i.e., Windows OS, Linux OS, firewalls, switches, etc.).
• Experiencing applying DoD SRG/STIGs.
• Experience assessing cyber compliance using DoD STIG Viewer and SCAP Tools.
• Experience with LDAP and Microsoft Active Directory.
• Security audit log analysis.
• Excellent verbal and written communication skills.

RequiredEducation/Certifications:

• BA/BS degree in cyber security or equivalent discipline
• Security + or equivalent DoD 8570.01 IAT Level II or IAM Level I certification

MUST BE A US CITIZEN in order to be considered.

Why is This a Great Opportunity:

• Medical, vision and dental insurance for employees and dependents
• Paid time off including: minimum of 3 weeks vacation, 5 floating holidays, 8 designated holidays, 3 weeks personal illness, bereavement, jury duty and disability
• 401(k) with immediate vesting on employer match
• Tuition assistance
• Employee assistance programs
• Employee stock purchase program with employer match

Salary Type : Annual Salary

Salary Min : 90000

Salary Max : 115000

Currency Type : US Dollars