Information System Security Officer (ISSO) (15.02)

OCT Consulting is a business management and technology consulting firm that provides support to Federal Government clients. We provide consulting services in the areas of Strategy, Process Improvement, Change Management, Program and Project Management, Acquisition/Procurement, and Information Technology.

Responsibilities and Duties

OCT currently has an opening for an Information System Security Officer (ISSO) Lead to work with our federal client, the Federal Communications Commission (FCC). This role will serve as the primary liaison between the FCC Cybersecurity Group and system stakeholders, ensuring compliance with security policies and managing the security posture of IT systems. This position is contingent upon contract award.

Day to day responsibilities include:

• Serve as primary liaison between FCC Cybersecurity Group, Information System Owner (SO), Enterprise Common Control Provider (ECCP), and Information Owner
• Verify applications and support systems meet information security policies including continuous vulnerability scans, patch management, and configuration management
• Ensure compliance with commercial and open-source software requirements through FCC OCIO Governance Boards
• Assist with reporting and investigating information security incidents to the Cybersecurity Group Security Operations Center (SOC)
• Identify security categorization and control selection of information systems following established methodology
• Coordinate Initial Privacy Assessments (IPAs) and Privacy Impact Assessments (PIAs)
• Perform real-time monitoring of assigned information systems through dashboarding capabilities
• Draft, review, and update information system continuous monitoring plans based on changes in risk, control selection, laws, and guidelines
• Review tiered information security reports and participate in briefings with system owner, CISO, and Authorizing Officials
• Prepare Security Posture Reports with adjusted metrics
• Manage POA&M activities and vulnerability management across FCC networks and projects

Requirements

• Must be a U.S. Citizen
• Bachelor's degree in Cybersecurity, Information Systems, or related field
• 5+ years of related management experience in information system security
• Core competencies in RMF, information assurance, continuous monitoring, and POA&M management
• Knowledge, skills, tasks, and capabilities described in NICE work role Systems Security Management (OG-WRL-014)
• Ability to perform any and all functions associated with this effort
• Required Certifications: Certified Information Systems Security Professional (CISSP)
• Clearance Requirements: Top-Secret (TS) clearance

Location: On-site at FCC headquarters; some telework may be available

Benefits

OCT offers competitive compensation packages and a full suite of benefits which includes:

• Medical, Dental, and Vision insurance
• Retirement savings 401K plan provided by an industry leading provider with 3% employer contributions of the employee's gross salary
• Paid Time Off and Standard Government Holidays
• Life Insurance, Short- and Long-Term disability benefits
• Training Benefits