Lead Information System Security Officer (ISSO) with Security Clearance - Tyto Athene, LLC
Arlington, VA 22204
About the Job
Tyto Athene is searching for several highly experienced Lead Information System Security Officers (ISSO) to support our customer in Arlington, Virginia.
Responsibilities:
• Lead Risk Management Framework Assessment & Authorization (A&A) activities for various information systems
• Lead the entire RMF cycle for all assigned systems to include: initiation, categorization, selection, implementation, assessment, authorization & continuous monitoring
• Implement & manage security controls in accordance with the current revision of NIST 800-53
• Conduct ongoing security reviews & tests of assigned systems to verify that security features and controls are functional and effective
• Develop Plan of Action & Milestones (POA&Ms) in response to identified vulnerabilities, and lead remediation efforts
• Develop security documentations to include, but not limited to, System Security Plans (SSPs), Plan of Actions & Milestones (POA&Ms), and other artifacts to support the Body of Evidence (BOE)
• Coordinate security testing exercises to include but not limited to: incident response, disaster recovery & contingency activities
• Review proposed change requests related to system design/configuration and perform a security impact analysis (SIA) to provide approval or denial recommendations
• Support external & internal audits of designated systems
• Develop & present, both verbally and in writing, security briefings to all levels of the organization including senior executives (CIO, DCIO & CISO) Required:
• Bachelor's degree in Computer Science, Information Technology, or related field
• 10 years of relevant experience
• Experience with Authority to Operate (ATO) process, continuous monitoring, POA&Ms, Security Authorizations (SA), NIST 800-37, NIST 800-53 Rev4/ Rev5, NSM 8 and working with System Owners
• Familiarity with information system security principles of NIST 800-171
• In-depth knowledge of NIST special publications, CNSS policies and instructions
• Ability to review, analyze, and interpret technical procedures against customer security requirements
• Strong communication skills, both written and verbal Desired:
• Understanding & experience with eMASS or Xacta is a PLUS
• FedRAMP process & Cloud environments (Azure, AWS) experience preferred
• Certified Information Security Manager (CISM) (optional but highly recommended) Clearance: Active TS/SCI clearance required Certification: DoD 8570 IAM/IAT Level II certification.
This will change to a DoD 8140 equivalent once a DISA 8140 policy is released.
Location: This is an on-site role with expectations of being on the client site in Arlington, VA five days a week.
After several strategic acquisitions in 2021, Tyto Athene has experienced enormous opportunity and growth.
Aside from being the leading provider of mission-focused IT and Cyber services and solutions to critical U.S.
government agencies, Tyto is well-positioned to meet the growing demand for network modernization requirements across the federal enterprise.
Our employees are the key to the innovation that has made Tyto a success.
We provide an environment that is geared to reward potential, innovation, and teamwork.
If you would like to unleash your creativity and your career -- it's time to join Team Tyto! Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled
Responsibilities:
• Lead Risk Management Framework Assessment & Authorization (A&A) activities for various information systems
• Lead the entire RMF cycle for all assigned systems to include: initiation, categorization, selection, implementation, assessment, authorization & continuous monitoring
• Implement & manage security controls in accordance with the current revision of NIST 800-53
• Conduct ongoing security reviews & tests of assigned systems to verify that security features and controls are functional and effective
• Develop Plan of Action & Milestones (POA&Ms) in response to identified vulnerabilities, and lead remediation efforts
• Develop security documentations to include, but not limited to, System Security Plans (SSPs), Plan of Actions & Milestones (POA&Ms), and other artifacts to support the Body of Evidence (BOE)
• Coordinate security testing exercises to include but not limited to: incident response, disaster recovery & contingency activities
• Review proposed change requests related to system design/configuration and perform a security impact analysis (SIA) to provide approval or denial recommendations
• Support external & internal audits of designated systems
• Develop & present, both verbally and in writing, security briefings to all levels of the organization including senior executives (CIO, DCIO & CISO) Required:
• Bachelor's degree in Computer Science, Information Technology, or related field
• 10 years of relevant experience
• Experience with Authority to Operate (ATO) process, continuous monitoring, POA&Ms, Security Authorizations (SA), NIST 800-37, NIST 800-53 Rev4/ Rev5, NSM 8 and working with System Owners
• Familiarity with information system security principles of NIST 800-171
• In-depth knowledge of NIST special publications, CNSS policies and instructions
• Ability to review, analyze, and interpret technical procedures against customer security requirements
• Strong communication skills, both written and verbal Desired:
• Understanding & experience with eMASS or Xacta is a PLUS
• FedRAMP process & Cloud environments (Azure, AWS) experience preferred
• Certified Information Security Manager (CISM) (optional but highly recommended) Clearance: Active TS/SCI clearance required Certification: DoD 8570 IAM/IAT Level II certification.
This will change to a DoD 8140 equivalent once a DISA 8140 policy is released.
Location: This is an on-site role with expectations of being on the client site in Arlington, VA five days a week.
After several strategic acquisitions in 2021, Tyto Athene has experienced enormous opportunity and growth.
Aside from being the leading provider of mission-focused IT and Cyber services and solutions to critical U.S.
government agencies, Tyto is well-positioned to meet the growing demand for network modernization requirements across the federal enterprise.
Our employees are the key to the innovation that has made Tyto a success.
We provide an environment that is geared to reward potential, innovation, and teamwork.
If you would like to unleash your creativity and your career -- it's time to join Team Tyto! Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled
Source : Tyto Athene, LLC