Description
Overview
BlueWater Federal is looking for an ISSM to support SOCOM
Responsibilities
- Promote system security to include all relevant hardware and software aligned under the Program, is properly configured, and documented, complies with DoD Intelligence Information Systems (DoDIIS) Security Certification and Accreditation guide, and the Defense Information Systems Agency's (DISA) Security Requirement Specifications.
- Initiate, review, coordinate, and complete all documents, certifications, and accreditations required for equipment, systems, software, and/or networks associated with the PMO and its associated projects.
- Develop and maintain necessary documentation in accordance with government directives and assist in the formation of security test plans.
- Conduct security engineering reviews to ensure security mechanisms are built into any new capabilities and upgrades. Manage the configuration and management release process for each software release/patch as they become available.
- Coordinate with J62 Cybersecurity accreditors to ensure timely approval of all software releases. Administer the PMO's security strategy for mitigating security incidents (such as data spillage, unauthorized access, code injection, etc.). Provide risk mitigation recommendations to ensure better security while considering the user's operational needs.
- Assess and enhance current policies and procedures to ensure that security checks are upgraded in line with best practices. Evaluate network security posture by running scans using USSOCOM Information Assurance (IA) standard scanning tools and comparing results against DISA Standard Technical Implementation Guides (STIGS) to determine severity of the findings.
- Provide results of findings to system engineers and assist their efforts to remediate any negative findings to bring reports into compliance with IA policies and procedures.
Qualifications
- Bachelor's degree in information security, Information Technology, or related discipline, or equivalent experience/combined education, with 5+ years of professional experience
- Must have an active Top Secret with SCI eligibility.
- Must have and maintain a DoD 8570.01-M (Information Assurance Workforce) IAM level 1 certification (e.g. Security+, GSLC, CISM, or CISSP)
- Experience with RMF artifacts, obtaining and maintaining system ATOs, and implementing new and complex technologies at multiple classification levels within large enterprise environments.
- Experience performing continuous monitoring and cybersecurity hygiene of windows domains and network enclaves.
- Experience with Risk Management Framework (RMF), NIST 800-53, DAPPM, and other legal and regulatory guidance
BlueWater Federal Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
Qualifications
- Bachelor's degree in information security, Information Technology, or related discipline, or equivalent experience/combined education, with 5+ years of professional experience
- Must have an active Top Secret with SCI eligibility.
- Must have and maintain a DoD 8570.01-M (Information Assurance Workforce) IAM level 1 certification (e.g. Security+, GSLC, CISM, or CISSP)
- Experience with RMF artifacts, obtaining and maintaining system ATOs, and implementing new and complex technologies at multiple classification levels within large enterprise environments.
- Experience performing continuous monitoring and cybersecurity hygiene of windows domains and network enclaves.
- Experience with Risk Management Framework (RMF), NIST 800-53, DAPPM, and other legal and regulatory guidance
BlueWater Federal Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
Responsibilities
- Promote system security to include all relevant hardware and software aligned under the Program, is properly configured, and documented, complies with DoD Intelligence Information Systems (DoDIIS) Security Certification and Accreditation guide, and the Defense Information Systems Agency's (DISA) Security Requirement Specifications.
- Initiate, review, coordinate, and complete all documents, certifications, and accreditations required for equipment, systems, software, and/or networks associated with the PMO and its associated projects.
- Develop and maintain necessary documentation in accordance with government directives and assist in the formation of security test plans.
- Conduct security engineering reviews to ensure security mechanisms are built into any new capabilities and upgrades. Manage the configuration and management release process for each software release/patch as they become available.
- Coordinate with J62 Cybersecurity accreditors to ensure timely approval of all software releases. Administer the PMO's security strategy for mitigating security incidents (such as data spillage, unauthorized access, code injection, etc.). Provide risk mitigation recommendations to ensure better security while considering the user's operational needs.
- Assess and enhance current policies and procedures to ensure that security checks are upgraded in line with best practices. Evaluate network security posture by running scans using USSOCOM Information Assurance (IA) standard scanning tools and comparing results against DISA Standard Technical Implementation Guides (STIGS) to determine severity of the findings.
- Provide results of findings to system engineers and assist their efforts to remediate any negative findings to bring reports into compliance with IA policies and procedures.
Apply on company website