Information Systems Security Officer

Job description

At PLEXSYS, our teams design, build and deliver Live, Virtual, and Constructive (LVC) innovation and training solutions to customers around the world.

With over 200 employees in seventeen states and four foreign countries, we contribute our success to enabling better training…everyday…across the globe.





As an employee of PLEXSYS, you’ll find a culture that empowers you to achieve your professional objectives, give your personal best, and work with other highly passionate individuals.

Our core values of integrity, excellence, teamwork and agility drive our daily decisions, identify our focus areas, and inspire our organizational culture.





GENERAL DESCRIPTION
The Information System Security Officer (ISSO) is responsible for ensuring the appropriate operational security
posture for information systems and as such, works in close collaboration with the ISSM, CPSO, and FSO.

The
ISSO must have detailed knowledge and expertise required to manage the security aspects of an information
system and is assigned the day-to-day responsibility for assigned systems.

Responsibilities include
implementation of the requirements of Risk Management Framework, including the Joint Special Access
Program (SAP) Implementation Guide (JSIG), NIST 800-53, or other security requirements as assigned.






This position will report to the Corporate Information Assurance Manager and work in close collaboration with
the AFSO and FSO.

The ISSO is responsible for developing and updating the security authorization package, managing and controlling changes to the system, and assessing the security impact of those changes.





+ Ensure systems are operated, maintained, and disposed of following security policies and procedures as outlined
in the security authorization package.



+ Report all security-related incidents to the ISSM.



+ Conduct periodic reviews of information systems to ensure compliance with the security authorization package.



+ Monitor system recovery processes to ensure security features and procedures are properly restored and
functioning correctly.



+ Ensure audit records are collected, reviewed, and documented.



+ Duties also include physical and environmental protection, personnel security, and incident handling.







DUTIES & RESPONSIBILITIES


+ Lead the information system security program for their assigned location to include implementation and
validation of automated informational security, ensuring security requirements as contracted are
satisfied

+ Maintain and establish the accreditation of classified information systems

+ Establish and implement security procedures and practices in support of Corporate goals and current
DoD Regulations


+ Ensure all security procedures are being followed such as patching, AV updates, continuous monitoring,
trainings, and self-inspections

+ Develop, implement and maintain security emergency action plans

+ Provide security education and training to local employees

+ Maintain administrative security records and documents for local employees

+ Conduct self-inspections to ensure current security measures and policies are effective

+ Conduct random security inspections to ensure regulations and procedures are being adhered to by
local employees

+ Conduct system audits in accordance with security accreditation package requirement

+ Lead the information system security program for their assigned location to include implementation and validation of automated informational security, ensuring security requirements as contracted are satisfied

+ Maintain and establish the accreditation of classified information systems

+ Establish and implement security procedures and practices in support of Corporate goals and current DoD Regulations

+ Ensure all security procedures are being followed such as patching, AV updates, continuous monitoring, trainings, and self-inspections

+ Develop, implement and maintain security emergency action plans

+ Provide security education and training to local employees

+ Maintain administrative security records and documents for local employees

+ Conduct self-inspections to ensure current security measures and policies are effective

+ Conduct random security inspections to ensure regulations and procedures are being adhered to by local employees

+ Conduct system audits in accordance with security accreditation package requirements

+ Conduct vulnerability scans and analysis

+ Conduct maintenance on the networks, systems, and hardware

+ Perform software upgrades on networks, systems, and hardware

+ Perform security assignments in accordance with the Automated Information System requirements and local regulations

+ Understand and follow NISPOM/ODAA/RMF/JAFAN/ICD/NIST/JSIG classified system accreditation and certification requirements

+ Other duties as assigned


REQUIREMENTS



+ Bachelor’s degree in related field or 4 years’ experience in related field

+ DoD 8570 compliant, IAT Level II

+ Experience with Windows based administration of Information Systems

+ Ability to work within compliance standards; previous experience with RMF, HIPAA , PCI DSS, or
equivalent compliance standard preferred

+ Strong experience in networking, active directory, centralized logging solutions, vulnerability scanning
and anti-virus solutions

+ Experience with security audits for information systems

+ Strong communication and problem-solving skills

+ Ability to work in both a team environment as well as independently

+ Must be organized and detail oriented

+ Ability to obtain and maintain Top Secret clearance with the ability to obtain approval for SAP/SCI access





DESIRABLE



+ Have previous experience with DoD Security Regulations and Policies




PERKS

As a PLEXSYS employee, you can expect certain advantages; such as advancement based on performance, competitive wages, valuable benefits and a great working environment.

Our team is committed to ensuring an environment that empowers individuals to realize their full potential by providing opportunities and necessary support to achieve personal and professional goals.




+ Medical/Vision/Prescription/Dental Benefits

+ Life, AD&D and Long Term Disability Coverage

+ Paid Holidays, Military Leave, and Paid Time Off

+ 401k Plan with eligibility from first day of employment

+ Education reimbursement for job-related courses for full-time employees

+ PriceClub/COSTCO/Sam's Club annual membership


Department
Security

Employment Type
Full-Time

Minimum Experience
Mid-level

Compensation
$83,600 to $132,000 annually

Required Skill Profession

Other General