Tracking Code: 9445
The Information System Security Officer (ISSO) serves as the principal advisor to the Information System Owner, Business Process Owner, and the Chief Information Security Officer (CISO) on all matters, technical and otherwise, involving the security of an information system. ISSOs are responsible for ensuring the implementation and maintenance of security controls in accordance with the System Security Plan (SSP) of a system. ISSOs are called on to provide guidance, oversight, expertise, and develop security documents or actually implement any security controls. While ISSOs will not actually perform all functions, they will have to coordinate, facilitate, or otherwise ensure certain activities are performed. As a result, it is important for ISSOs to build relationships with the System Owner, technical staff, and other stakeholders.
DRC is a leading provider of mission-critical technology management services and solutions for government programs. In the past three years, we have made several strategic hires and acquisitions that have positioned us for rapid growth in the Greater DC Metro (National Capital Region) area. Towards this end, we will be consolidating our Reston and Ballston offices with the opening of a new facility in Clarendon in June 2011. These investments have resulted in DRC being featured in a Federal Computer Week article titled “9 Hot Companies to Watch in 2011.”
Understanding of System Development Lifecycle (SDLC) models
Ability to configure network scanning tools such as NMAP, Nessus, or eEye Retina
Understanding of network topologies, TCP/IP, and boundary protection appliances
Able to apply advance subject matter knowledge to complex issues (considered a SME); act as an expert providing direction and guidance.
Strong client-facing skills with superior oratory and organizational skills
Strong understanding of how to leverage internal resources and personnel to present best-case solutions to the client
Contribute to the development of new ideas and methods.
Work on complex problems/project; ability to work in independent environments under aggressive timelines
Exercise significant independent judgment within broadly defined policies and practices.
Leads and/or provides expertise to project teams and may participate in cross-functional initiatives.
Provide mentoring and guidance to junior level personnel.
Experience creating Certification and Accreditation (C&A) documentation
3 years of experience with the Security Authorization (or C&A) methodology according to an agency standard framework such as DCID 6/3, DIACAP, or NIST
Strong knowledge of agency specific policies such DHS 4300A, or DOD Instructions (DODI)
Minimum of 3 years experience with system administration or system engineering in any of a variety of environments.
Minimum of 3 years experience with vulnerability scans on systems of varying complexity Certifications : Must possess at least one of the following: CISSP, CAP, Security+, or similar information security certifications
High school diploma/GED and 9 years of experience
Associates Degree and 7 years of experience
Bachelors Degree and 5 years of experience
Masters Degree and 3 years of experience
Doctorate and 1 year of experience Clearance: Must have a Secret Clearance J2W: CJ
Job Location: Washington DC, DC, USA
Position Type: Full-Time
Dynamics Research Corporation - 18 months ago