SP28 Senior Information Systems Security Officer (ISSO)

Job description

Amentum is looking for a Sr. Information System Security Officer (ISSO) to support Program Offices within Department of Defense Strategic Systems Programs (SSP).

The ISSO will support non-enterprise information systems of large-scaled programs of record (POR), as well as multiple Science and Technology (S&T) programs.

The System ISSO will provide direct support to the Program Office Technical Lead onsite at NSWC Crane and will be expected to travel regularly to SPHQ or Field Activities.

The System ISSO is responsible for ensuring that the appropriate operational Cybersecurity posture is maintained for the systems under their purview.

They ensure that the applicable system level security objectives are defined for implementation and assist in creating the security authorization package.

**Job Duties and Responsibilities:**

+ Ensure systems are accredited, and the standard operating procedures include required security procedures.
+ Ensure that the systems are operated and maintained such that they stay within the accepted level of residual Cybersecurity risk.
+ Ensure that Cybersecurity documentation is developed, maintained, and updated as required.
+ Implement SSP responses to DoD IAVAs and IAVBs.
+ Initiate investigative procedures for security events, and institute protective or corrective measures when a security incident or vulnerability is discovered.
+ Report in conjunction with the User Representative (UR) to the branch ISSM on Cybersecurity incidents.
+ Work with the URs to ensure that incident response plans and contingency plans are developed and tested prior to system operation and annually thereafter, and results documented in the Security Authorization Package.
+ Participate in all engineering reviews for systems under their cognizance.
+ In alignment with the Risk Management Framework (RMF), implement security controls, document security measures, and oversee the security posture of information systems operating under Interim Authorization to Test (IATT), preparing authorization packages, and working with various stakeholders to ensure the system's security.
+ Collaborate with System Administrators to ensure security configurations, patches, and access controls are implemented and maintained during testing.
+ Develop requirements for large-scale or service specific pilot projects.
+ Support (prepare, review, and present) the Program Office's DoD Acquisition process in the development of the Objective Quality Evidence (OQE) (i.e. Cyber Security Strategy, GAO responses, Clinger Cohen Act, Cyber Test & Evaluation Strategy, etc.) for multiple programs, in compliance with SSP Regulations.
+ Support the Program Office Technical Lead as needed identifying issues and action items, document OQE, and participating in ISSO discussions.
+ Provide customer interactions with Program Offices and associated contractors/subcontractors.

Customer interactions will be a combination of teleconferences and on-site meetings.
+ Interface with the SSP Functional Authorizing Official (FAO, formerly AODR)
+ Coordinate and collaborate with the stakeholders, including SSP representativ.es and contractors/subcontractors through assessments, subject matter expert input to proposals, technical interchange meetings, status teleconferences, email correspondence, and other meetings as required.
+ Support development of technical presentations and provide comments on the technical content.
+ Develop System Security Plans detailing the security controls implemented for each information system.
+ Work with SSP programs to develop and maintain lifecycle plans.
+ Oversee the application of Security Technical Implementation Guides (STIGs) and ensure vulnerability scans are completed in a timely manner.
+ Evaluate performer deliverables and presentations.

**Required Qualifications:**

+ Bachelor of Science Degree in Cybersecurity, Computer Science, Computer Engineering or equivalent
+ 5+ years of relevant experience
+ Must be able to obtain and maintain a US Government Top Secret/Critical Nuclear Weapons Design Information Clearance OR a TS/SCI Clearance.

Interim Top-Secret Clearance is required to begin work.

Please note US Citizenship is required to obtain and maintain a Top-Secret Clearance.
+ CompTIA Security+ or equivalent certification
+ Ability to collaborate with large and highly competent technical teams.
+ Strategic high-level thinking
+ Ability/experience with planning an initiative involving large-scale, networked systems.
+ Must be a United States citizen to obtain clearance.
+ Willing and able to travel 40% or more.

**Preferred Qualifications:**

+ 10+ years of relevant experience
+ Graduate degree in Cybersecurity, Certified Information Systems Security Professional (CISSP) certification, or Certified Information Security Manager (CISM) certification
+ Active Top Secret Clearance

Amentum is proud to be an Equal Opportunity Employer.

Our hiring practices provide equal opportunity for employment without regard to race, sex, sexual orientation, pregnancy (including pregnancy, childbirth, breastfeeding, or medical conditions related to pregnancy, childbirth, or breastfeeding), age, ancestry, United States military or veteran status, color, religion, creed, marital or domestic partner status, medical condition, genetic information, national origin, citizenship status, low-income status, or mental or physical disability so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law.

Learn more about your rights under Federal laws and supplemental language at Labor Laws Posters (https://postings.govdocs.com/#/vxSkbztPuAwwxfs) .

Required Skill Profession

Other General