Information Systems Security Officer (ISSO) at New Paradigm Consulting Incorporated
Catonsville, MD 21228
About the Job
Job Title: Information Systems Security Officer (ISSO)
Job Description:
New Paradigm Consulting is seeking an experienced Senior Information Systems Security Officer (ISSO). As the ISSO, you will be part of a team responsible for the Authorization and Assessment process under the Risk Management Framework (RMF) for both new and existing information systems. Your role will involve maintaining compliance with Authority to Operate for all assigned systems.
The ISSO will be expected to work in a fast paced environment and may involve meeting deadlines. Collaboration and teamwork are essential, both within the team and with colleagues across the company and customers.
Job Responsibilities:
- Support the information assurance program of a program, organization, system, or enclave.
- Assist in proposing, implementing, and enforcing information systems security policies, standards, and methodologies.
- Provide daily oversight and direction to ISSOs (Information Systems Security Officers).
- Maintain the appropriate operational security posture for assigned systems, programs, and/or enclaves.
- Offer guidance and technical expertise on all matters affecting the security of the information system.
- Aid in developing and executing an enterprise-level continuous monitoring program to minimize security risks and ensure routine compliance.
- Develop, update, and submit the System Security Plan and other required documentation for the Security Authorization Package.
- Conduct configuration management for security-relevant changes to software, hardware, and firmware.
- Perform security impact analyses of changes to the system or its operational environment and deliver the findings.
- Continuously assess the effectiveness of system security controls to determine the system's security status.
- Maintain and enforce IT security policies and implementation guidelines for customer systems in diverse operational environments.
- Manage configuration for security-relevant information system software, hardware, and firmware.
Job Qualifications:
- Experience: Minimum 12 years of related work experience in security authorization.
- Education: Bachelor's degree in Computer Science, Information Technology Engineering, or a related field (substitutable for 4 years' experience).
- Clearance: Active and current TS/SCI w/Poly clearance.
- DoD 8570.1 compliant IAM Level III certification (e.g., GSLC, CISM, CISSP or associate).
- Knowledge of security authorization processes and procedures defined in RMF (NIST SP800-37) and familiarity with ICD503, CNSSI1253, SP800-53, etc.
- Familiarity with commercial security tools and their applications.
- Experience with hardware/software security implementations.
- Knowledge of various communication protocols, encryption techniques/tools, PKI, and authorization services.
- Familiarity with security incident management, collaborating with Incident Response Teams, and providing recommendations for incident resolution and vulnerability compliance.
- Experience in creating and presenting documentation and management reports.
- Excellent verbal and written communication skills.
- Professional behavior that enhances productivity, teamwork, and cooperation.
- Ability to interface with individuals at all organizational levels.
- Strong organizational skills with the ability to prioritize and coordinate multiple tasks.
- Ability to work well under pressure and meet deadline requirements.
- Availability for occasional overtime and flexibility with working hours.
Skills:
- Teamwork: Ability to collaborate effectively with team members and stakeholders.
- Communication: Strong verbal and written communication skills.
- Problem-solving: Proficiency in analyzing complex security issues and developing effective solutions.
- Adaptability: Willingness to adapt to changing priorities, technologies, and work environments.
- Time management: Strong organizational and time management skills.
- Attention to detail: Meticulousness in ensuring accuracy and precision.
- Professionalism: Ability to maintain a high level of professionalism, integrity, and confidentiality.
- Critical thinking: Capacity to evaluate and assess security risks and incidents.
- Leadership: Demonstrated leadership skills and ability to take ownership of projects.
- Analytical skills: Ability to analyze and troubleshoot issues effectively.
- Continuous learning: Commitment to continuous learning and system development.
- Quick learner: Ability to quickly learn new concepts, data formats, and software.
- Self-motivation: Self-motivated, independent, and detail-oriented.
- Relationship management: Exceptional relationship management skills.
- Highly analytical and effective troubleshooting and prioritization skills.
Detailed Skills:
- Experience with XACTA IA Manager.
- Ability to review NESSUS Scans and provide tasking to Systems Administrators.
Benefits:
- Medical Ins
- Dental Insurance
- Vision
- 401(k)
- Life Insurance
Compensation Range $95,000 - $160,000
Remote Work Allowed: No
Employment Type: Full-Time
Job Location: 5520 Research Park Dr, Catonsville, MD 21228
Hiring Company: New Paradigm Consulting Incorporated
Why Work at This Company? New company with great growth opportunities!
Hiring Company Description:
New Paradigm Consulting, Incorporated (NPCI) is an IT company specializing in Cybersecurity, Data Transformation, and Business & Management Consulting providing services and solutions to the Intelligence Community (IC) and Commercial Vendors.
Screening Questions:
- Question 1 – Licenses/Certifications
- Do you have the following: TS/SCI w/ CI or Full-Scope Polygraph?
- Question 2 – Education
- Have you completed the following level of education: Bachelor’s Degree?