ChantillyRecruiter Since 2001
the smart solution for Chantilly jobs

Information Security- ISSO (Active Top Secret Clearance Required)

Company: General Dynamics Information Technology
Location: Chantilly
Posted on: May 14, 2020

Job Description:

Type of Requisition: Regular Clearance Level Must Currently Possess: Top Secret Clearance Level Must Be Able to Obtain: Top Secret SCI + Polygraph Suitability: Polygraph Public Trust/Other Required: None Job Family: Information Security Job Description: Responsibilities The ISSO position shall provide comprehensive Information Assurance (IA) support to customer Directorates and Offices.  The ISSO will fall under the agency Information System Security Manager (ISSM) and will provide day-to-day information assurance operations support by ensuring that IA and Operational security practices are maintained for all assigned Information Systems (IS). ISSOs must possess a strong working knowledge of: Information Assurance concepts, to include Assessment and Authorization (A&A) activities General Information Technology (IT) system functions Documented Security policies and best practices Standard technical security safeguards Operational Security (OpSec) measures FISMA Support Ensure compliance with annual Federal Information Security Management Act (FISMA) deliverables and reporting. Develop and maintain Configuration Management Plans (CMP) for software, hardware, and firmware, and serve as a member of the Configuration Management Board, with Information System Security Manager (ISSM) and System Owner concurrence. Develop Information System Contingency Plans (ISCP), Continuity of Operations (COOP) and Disaster Recovery Plans (DRP) and Business Impact Assessments (BIA). Perform ISCP Training and Testing. Develop Incident Response Plans (IRP). Perform IRP Training and Testing. Perform Security Controls Assessments of Information Systems. Ensure general users and privileged users are trained in the specific knowledge needed for them to safely operate and maintain the Information System, to which they have access, including general security awareness and specialized privileged user training. Develop and maintain POA&Ms at least quarterly. Perform monthly vulnerability scanning to include Nessus Vulnerability (Patch Management) and Compliance (STIG) Scans Trustwave AppDetective Database Scans Trustwave AppScan Web Application Scans Develop Privacy Threshold Assessments (PTA) and Privacy Impact Assessments (PIA). Assessment and Authorization Support Ensure the day-to-day implementation, oversight, continuous monitoring, and maintenance of the security configuration, practices, and procedures for each information system during all phases of the IS lifecycle. Knowledge of NIST 800-53 security controls to ensure system implemented and operating as intended during all phases of the information system life cycle. Develop and maintain Security Concept of Operations (SECONOPS) and FISMA documentation prior to system authorization. Support risk assessment and evaluation activities throughout the Assessment and Authorization (A&A) accreditation process. Works closely with the System Administrator to maintain the various system and application A&A status. Develop Plan of Action & Milestones (POA&Ms) in response to reported security vulnerabilities. Manage the risks to information systems by coordinating appropriate correction or mitigation actions, and oversee and track the timely completion POA&Ms. Prepare the Security Test Report (STR) to include findings and recommendations for conducting remediation on deficiencies discovered during security control assessments. Provide liaison support between the system owner and other information system security personnel. Upload all security control evidence to the Government Risk Compliance (GRC) application to support security control implementation during the monitoring phase. Establish audit trails, ensuring their review and reporting all identified security findings. Make audit reviews available, when required, to the ISSM or Chief Security Officer (CSO). Retain audit logs in accordance with established policy. Integrate audit reviews with Insider Threat programs and monitoring processes. Ensure that selected security controls are implemented and operating as intended during all phases of the information system life cycle. Provide input to the development process which will include Information Security planning, design, test and analysis. Physical Security Manage the review, release and destruction of media and/or memory components. Ensure Information Systems are disposed of in accordance with approved security policies and practices. Conduct security reviews of electronic devices (e.g., portable electronic devices (PEDs), laptops, tables, etc.) prior to and when exiting US government space. Conduct security reviews of media provided by external sources prior to this media being introduced into Information System. Manage thumb drive accountability and Agency incident response process. General Ensure that all users have the requisite security clearances, authorization, and need-to-know before granting access to the IS. Ensure users are aware of their security responsibilities before granting access to an IS Ensure a process for managing changes in user access to ISS (as required access and need-to-know change) and for terminating user access when it is no longer required or authorized, according to established policy requirements. Research and maintain knowledge of Information Assurance (IA) policies and practices, seeking clarification from the ISSM or higher authority when needed, and disseminates these to users. Respond to insider threat requests for analysis pertaining to supported systems. Ensure that changes to an information system, it's environment, and operational needs that may affect the authorization status are reported to the system owner and ISSM. Report all Information System security-related incidents in accordance with the reporting requirements in the system’s IRP and ISCP. Provide research and analysis of Commercial-Off-The-Shelf (COTS) and Government- Off-The-Shelf (GOTS) and IA-enabled products as part of the security architecture and ensure products are National Security Telecommunications and Information Systems Security Policy Number 11 (NSTISSP-11) complaint and validated via the National Information Assurance Partnership (NIAP) Common Criteria Evaluation and Validation Scheme or National Institute of Standard (NIST) Federal Information Processing Standards (FIPS) Cryptographic Module Validation Program (CMV P). Qualifications The following qualifications are desired: Bachelor’s Degree with 7 years of experience Active TS/SCI with Poly Splunk Experience Microsoft Azure and AWS Cloud Experience Education relevant to computer engineering, information security, information management, and/or computer science Any of the following certifications:  CISSP, CASP, CAP, GSLC, CISM Scheduled Weekly Hours: 40 Travel Required: None T elecommuting Options: Telecommuting Not Allowed Work Location: USA VA Chantilly Additional Work Locations: We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

Keywords: General Dynamics Information Technology, Chantilly , Information Security- ISSO (Active Top Secret Clearance Required), Other , Chantilly, Virginia

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Other Other Jobs


Case Investigator
Description: Caliper, A CorTech Company, provides temporary staffing and is currently hiring for multiple openings for a Case Investigator in Richmond, VA. This position is paying between 40-45/hr, 40 hrs a week (more...)
Company: CorTech LLC
Location: Leesburg
Posted on: 06/5/2020

Systems Engineer
Description: Job Summary br br ASSIGNMENT DESCRIPTION: Systems Engineers apply a structured approach to design and implementation of systems and processes. They capture and translate mission and customer requirements (more...)
Company: National Geospatial Intelligence Agency
Location: Chantilly
Posted on: 06/5/2020

Virtual Hiring Event- Security Officers-Department of Defense (DOD) Cleared
Description: At Allied Universal----our Security Professionals assist clients, and the public at large, by providing essential jobs that keep our communities safe and secure. --During this time, we need your help (more...)
Company: Allied Universal
Location: Chantilly
Posted on: 06/5/2020


Regional Containment Advisor
Description: Caliper - A CorTech Company, a temporary staffing company has 10 immediate opening for Regional Containment Advisor Monday through Friday, 40 hours per week. 28- 32 per hourJob OverviewPurpose of Position:The (more...)
Company: CorTech LLC
Location: Leesburg
Posted on: 06/5/2020

Class A Team Driver Jobs: Earn up to 80 CPM!
Description: Your OTR team can earn up to 165,000 - or much more Doubles
Company: U.S. Xpress
Location: Charlottesville
Posted on: 06/5/2020

Assembler
Description: Assembler -- Build electro-mechanical assemblies following released procedures and perform production tests and minor trouble shooting to a variety of finished assemblies and assembled instruments. Essential (more...)
Company: Cypress HCM
Location: Chantilly
Posted on: 06/5/2020

Regional Testing Coordinator
Description: Caliper - A CorTech Company, a temporary staffing company has 10 immediate openings. This position will work 40 hours per week, Monday through Friday.Job OverviewPurpose of Position:The Regional Testing (more...)
Company: CorTech LLC
Location: Leesburg
Posted on: 06/5/2020

Quantitative Analytics Specialist 3- Credit and PPNR Modeling
Description: Job DescriptionImportant Note: During the application process, ensure your contact information email and phone number is up to date and upload your current resume when submitting your application for (more...)
Company: Wells Fargo Bank
Location: Leesburg
Posted on: 06/5/2020

Class A CDL Team Truck Drivers
Description: Your OTR team can earn up to 165,000 - or much more Doubles
Company: U.S. Xpress
Location: Leesburg
Posted on: 06/5/2020

Welcome New Graduate Registered Nurses
Description: Job Title br br Welcome New Graduate Registered Nurses br br 03-02-2020 br br Requisition Id br br 134444BR br br Department Number and Name br br 010013001 Nursing Administration (more...)
Company: Sentara Healthcare
Location: Charlottesville
Posted on: 06/5/2020

Log In or Create An Account

Get the latest Virginia jobs by following @recnetVA on Twitter!

Chantilly RSS job feeds