Information System Security Officer (ISSO)

Information System Security Officer (ISSO)

Job Category: Security

Time Type: Full time

Minimum Clearance Required to Start: TS/SCI with Polygraph

Employee Type: Regular

Percentage of Travel Required: None

Type of Travel: None

* * *

The Opportunity:

CACI is seeking a cleared Information System Security Officer (ISSO) to provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operations IA posture for a system, program, or enclave at Annapolis Junction, MD.

Responsibilities:

• Maintain operational security posture for an information system or program.

• Provide Cyber Security oversight, guidance, and support in support of Assessment and Authorization (A&A) as required by the Federal Information Security Management Act (FISMA).

• Prepare system security plan (SSP) and provide recommendations to assist in obtaining ATOs based on RMF experience IAW established cybersecurity policies and procedures.

• Verify package submissions have met the threshold for approval such as: CCIs, SCA-V results, POA&Ms, STIGs, Cyber Security Strategies and System Security Plans (SSPs) and other RMF documentation etc.

• Identify, develop (either directly, or in coordination with applicable experts), review and incorporate common artifacts found in an RMF accreditation package such as: system architecture and boundaries, hardware and software lists, risk assessment reports, POA&Ms, data flows, PPSM accounting, and other necessary system, network, and application documentation.

• Knowledge and experience identifying, assessing, and documenting compliance against applicable DoD security controls (technical, management, operational), within RMF packages.

• Familiarity with the use of vulnerability scanning and assessment tools (e.g., ACAS/Nessus) necessary to identify and document compliance.

• Analyze and interpret vulnerability assessment results and formulate plans to mitigate vulnerabilities.

• Assist with the CM for information system security software, hardware, and firmware.  Maintain records on workstations, servers, routers, firewalls, intelligent hubs , network switches, etc. to include system upgrades.

• Oversee the implementation of software patches to maintain the security posture of the organization.

• Identify information system risks and possible mitigation measures, documenting these in various risk reports and Plans of Action and Milestones (POA&Ms).

• Perform and complete STIG checklists, monitor IAVM compliance, and appropriately assess and document to completion all associated POA&Ms.

• Identify, interpret, and evaluate major applications, infrastructure, enclaves, and Enterprise system environments based on proposed accreditation boundaries.

• Establish and publish upon approval Cybersecurity policies and Standard Operating Procedures (SOPs) as required.

• Maintain and report assessment and authorization statuses and issues in accordance with organizational guidance.

• Ability to translate technical IS configurations into non-technical documentation.

• Responsible for implementing, and enforcing information systems security policies, standards, and methodologies.

• Strong verbal and written communications and interpersonal skills.

Qualifications:

Required: 

• An active TS/SCI with Poly.

• 6 years of experience and HS/GED OR Bachelor’s and 2 years of experience.

• IAT Level II (Security +).

• Configuration and Document Management.

• Security Policy.

• Security Vulnerability Scanning Tools.

• System Security Plan (SSP).

 

This position is contingent on funding and may not be filled immediately. However, this position is representative of positions within CACI that are consistently available. Individuals who apply may also be considered for other positions at CACI.

______________________________________________________________________________

What You Can Expect:

 

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.

 

An environment of trust.

CACI takes pride in fostering a diverse and accessible culture where every individual feels supported to chart their own path. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

 

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.

 

Your potential is limitless. So is ours.

Learn more about CACI here.

______________________________________________________________________________

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.

The proposed salary range for this position is:

$78,700 - $165,300

CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, age, national origin, disability, status as a protected veteran, or any other protected characteristic.