Senior Information Systems Security Officer (ISSO)

Client: Pentagon Force Protection Agency (PFPA)
Location: Falls Church, VA

Client: Pentagon Force Protection Agency
Role: Sr ISSO
Location: Falls Church, VA
Reports To: Task Lead

Position Overview

Senior Information Systems Security Officer (ISSO) supporting the Pentagon Force Protection Agency in Falls Church, VA

Responsibilities

The Senior Information Systems Security Officer will act as a subject matter expert providing knowledge of Rick Management Framework (RMF) and lead Cybersecurity Inspections, Operations, and Orders Processing. The Sr ISSO will:

  • Work alongside the Information Assurance Engineers to perform DoD RMF for all Life, Safety, Backbone (LSB) mission systems and applications
  • Lead the security assessment and authorization activities for PFBA information systems — Maintain 100% ATO status.
  • Work alongside the Information Assurance Engineer to follow the DoD RMF to identify, implement, assess, and manage cybersecurity capabilities and services, expressed as security controls, and authorizing the operation of an information system
  • Lead cybersecurity related audits, inspections, and assessments
  • Ensure PFPA Information Systems comply with NIST, cybersecurity framework, DoD cybersecurity services evaluator scoring metrics
  • Work alongside the information assurance engineers in taking the appropriate remediation actions associated with findings from inspections and evaluations
  • Conduct weekly or ad-hoc audits, inspections and assessment reports, as well as remediation status briefings / reports
  • Develop system security contingency plans and disaster recovery plans
  • Develop and implement programs as required to ensure that systems, networks, and data users are aware of, understand, and adhere to systems security policies and procedures
  • Ensure the rigorous application of information security / information assurance policies, principals, and practices in the delivery of all IT services
  • Coordinate user and private account processing with the PFPAs Personnel Security Division to process request and work closely with FPTD team to ensure all necessary certification information is confirmed and documented
  • Oversee the journeyman ISSO’s Daily Cybersecurity Orders Processing

The Sr ISSO will work alongside the IA Engineers to review and deliver the daily, weekly, and monthly compliance reports for:

  • Dorman Accounts – Weekly
  • Priv Accounts – Weekly
  • Certificate Installation Files – Scan Report – Weekly
  • Account Configs – Weekly
  • Firewall Rules / Configs – Weekly
  • Exception Requests – Verify USB exception to policies are updated annually, ad hoc
  • Plan of Actions and Milestones – Weekly
  • Secret Server Configs – review for changes and report – Monthly
  • Security Logs – Review daily for anomalous activity – Daily
  • Active Directory Group Policy Review to verify personnel are in correct groups for access – monthly
  • Server and Workstate Image – Quarterly
  • PPSM – verify systems adhere to ports and protocols listed in the eMASS – Monthly
  • Local System Accounts – Quarterly
  • Monitor, report, investigate, and resolve security incidents and violations

Requirements

  • Active or Current Secret security clearance adjudicated by DIA or DoD CAF
  • Bachelor’s Degree in a related field such as Engineering, Information Systems, Information Technology or a technical discipline OR equivalent work experience
  • 7 years of progressive demonstrated experience in Information Assurance/Information Security, with a good working knowledge of both DoD and Federal Government Information Assurance / Security policies and procedures
  • 5 years of demonstrated experience in an ISSO position
  • Current DoD 8570.01-M IAM Level III certification: CISM, CISSP (or Associate), GSLC, or CCISO