Senior Information System Security Officer (ISSO) with Security Clearance - Tyto Athene, LLC
Arlington, VA 22204
About the Job
Tyto Athene is searching for a highly experienced Senior ISSO to support our customer in Arlington, Virginia.
Responsibilities:
• Lead Risk Management Framework Assessment & Authorization (A&A) activities for various information systems
• Lead the entire RMF cycle for all assigned systems to include: initiation, categorization, selection, implementation, assessment, authorization & continuous monitoring
• Implement & manage security controls in accordance with the current revision of NIST 800-53
• Conduct ongoing security reviews & tests of assigned systems to verify that security features and controls are functional and effective
• Develop Plan of Action & Milestones (POA&Ms) in response to identified vulnerabilities, and lead remediation efforts
• Develop security documentations to include, but not limited to, System Security Plans (SSPs), Plan of Actions & Milestones (POA&Ms), and other artifacts to support the Body of Evidence (BOE)
• Coordinate security testing exercises to include but not limited to: incident response, disaster recovery & contingency activities
• Review proposed change requests related to system design/configuration and perform a security impact analysis (SIA) to provide approval or denial recommendations
• Support external & internal audits of designated systems
• Develop & present, both verbally and in writing, security briefings to all levels of the organization including senior executives (CIO, DCIO & CISO) Required:
• Bachelor's degree in Computer Science, Information Technology, or related field
• 6 years of relevant experience
• Experience with Authority to Operate (ATO) process, continuous monitoring, POA&Ms, Security Authorizations (SA), NIST 800-37, NIST 800-53 Rev4/ Rev5, NSM 8 and working with System Owners
• Familiarity with information system security principles of NIST 800-171
• In-depth knowledge of NIST special publications, CNSS policies and instructions
• Ability to review, analyze, and interpret technical procedures against customer security requirements
• Strong communication skills, both written and verbal Desired:
• Understanding & experience with eMASS or Xacta is a PLUS
• FedRAMP process & Cloud environments (Azure, AWS) experience preferred
• Certified Information Security Manager (CISM) (optional but highly recommended) Clearance: Active TS/SCI clearance required Certification: DoD 8570 IAM/IAT Level II certification.
This will change to a DoD 8140 equivalent once a DISA 8140 policy is released.
Location: This is an on-site role with expectations of being on the client site in Arlington, VA five days a week.
After several strategic acquisitions in 2021, Tyto Athene has experienced enormous opportunity and growth.
Aside from being the leading provider of mission-focused IT and Cyber services and solutions to critical U.S.
government agencies, Tyto is well-positioned to meet the growing demand for network modernization requirements across the federal enterprise.
Our employees are the key to the innovation that has made Tyto a success.
We provide an environment that is geared to reward potential, innovation, and teamwork.
If you would like to unleash your creativity and your career -- it's time to join Team Tyto! Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled
Responsibilities:
• Lead Risk Management Framework Assessment & Authorization (A&A) activities for various information systems
• Lead the entire RMF cycle for all assigned systems to include: initiation, categorization, selection, implementation, assessment, authorization & continuous monitoring
• Implement & manage security controls in accordance with the current revision of NIST 800-53
• Conduct ongoing security reviews & tests of assigned systems to verify that security features and controls are functional and effective
• Develop Plan of Action & Milestones (POA&Ms) in response to identified vulnerabilities, and lead remediation efforts
• Develop security documentations to include, but not limited to, System Security Plans (SSPs), Plan of Actions & Milestones (POA&Ms), and other artifacts to support the Body of Evidence (BOE)
• Coordinate security testing exercises to include but not limited to: incident response, disaster recovery & contingency activities
• Review proposed change requests related to system design/configuration and perform a security impact analysis (SIA) to provide approval or denial recommendations
• Support external & internal audits of designated systems
• Develop & present, both verbally and in writing, security briefings to all levels of the organization including senior executives (CIO, DCIO & CISO) Required:
• Bachelor's degree in Computer Science, Information Technology, or related field
• 6 years of relevant experience
• Experience with Authority to Operate (ATO) process, continuous monitoring, POA&Ms, Security Authorizations (SA), NIST 800-37, NIST 800-53 Rev4/ Rev5, NSM 8 and working with System Owners
• Familiarity with information system security principles of NIST 800-171
• In-depth knowledge of NIST special publications, CNSS policies and instructions
• Ability to review, analyze, and interpret technical procedures against customer security requirements
• Strong communication skills, both written and verbal Desired:
• Understanding & experience with eMASS or Xacta is a PLUS
• FedRAMP process & Cloud environments (Azure, AWS) experience preferred
• Certified Information Security Manager (CISM) (optional but highly recommended) Clearance: Active TS/SCI clearance required Certification: DoD 8570 IAM/IAT Level II certification.
This will change to a DoD 8140 equivalent once a DISA 8140 policy is released.
Location: This is an on-site role with expectations of being on the client site in Arlington, VA five days a week.
After several strategic acquisitions in 2021, Tyto Athene has experienced enormous opportunity and growth.
Aside from being the leading provider of mission-focused IT and Cyber services and solutions to critical U.S.
government agencies, Tyto is well-positioned to meet the growing demand for network modernization requirements across the federal enterprise.
Our employees are the key to the innovation that has made Tyto a success.
We provide an environment that is geared to reward potential, innovation, and teamwork.
If you would like to unleash your creativity and your career -- it's time to join Team Tyto! Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled
Source : Tyto Athene, LLC