Information Systems Security Officer (ISSO)

Overview

Own Your Future.

Modern Technology Solutions, Inc. (MTSI) is seeking an ISSO to join our growing team in Huntsville, AL. 

Why is MTSI known as a Great Place to Work?

• Interesting Work:  Our co-workers support some of the most important and critical programs to our national defense and security.  
• Values: Our first core value is that employees come first.  We challenge our co-workers to provide the highest level of support and service, and reward them with some of the best benefits in the industry. 
• 100% Employee Ownership: we have a stake in each other's success, and the success of our customers.  It's also nice to know what's going on across the company; we have company wide town-hall meetings three times a year.  
• Great Benefits - Most Full-Time Staff Are Eligible for: 
  • Starting PTO accrual of 20 days PTO/year + 10 holidays/year
  • Flexible schedules
  • 6% 401k match with immediate vesting
  • Semi-annual bonus eligibility (July and December)
  • Company funded Employee Stock Ownership Plan (ESOP) - a separate qualified retirement account
  • Up to $10,000 in annual tuition reimbursement
  • Other company funded benefits, like life and disability insurance
  • Optional zero deductible Blue Cross/Blue Shield health insurance plan
• Track Record of Success:  We have grown every year since our founding in 1993

Modern Technology Solutions, Inc. (MTSI) is a 100% employee-owned engineering services and solutions company that provides high-demand technical expertise in Digital Transformation, Modeling and Simulation, Rapid Capability Development, Test and Evaluation, Artificial Intelligence, Autonomy, Cybersecurity and Mission Assurance.

MTSI delivers capabilities to solve problems of global importance. Founded in 1993, MTSI today has employees at over 20 offices and field sites worldwide.

For more information about MTSI, please visit www.mtsi-va.com.

Responsibilities

Modern Technology Solutions, Inc. (MTSI) is seeking an experienced Information Systems Security Officer (ISSO) who will be responsible for maintaining compliance with applicable security regulations, leading the Information Assurance program for various classified information systems at MTSI's Huntsville, AL office. Responsibilities: 

• Perform day-to-day maintenance of systems, including auditing and patch management
• Perform technical security assessments of complex systems
• Identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies
• Apply knowledge of IA policy, procedures, and workforce structure to implement secure networking, computing, and enclave environments
• Write authorization and accreditation (A&A) documentation and ensure the systems are operated and maintained in accordance with these security plans
• Enforce the design and implementation of trusted relationships among external systems and architectures
• Support security planning, assessment, risk analysis, and risk management for client systems and programs
• Interact with technical team members from multiple organizations in a diversified, team environment
• Identify overall security requirements for the proper handling of MTSI and client data
• Perform system or network designs that encompass multiple enclaves to include those with differing data protection/classification requirements
• Recommend system-level solutions to resolve security requirements
• Ensure all users have the requisite security clearances, authorizations, need-to-know, and are aware of their security responsibilities before granting access to client systems
• Conduct periodic reviews of information systems to ensure compliance with the security authorization package
• Perform key functions (above) and other security-related tasks as directed on multiple systems, at multiple sites, or for multiple clients
• Schedule, perform and maintain records of required IS auditing, patching, maintenance, software/hardware changes, and scanning based on evolving threat/vulnerabilities and customer compliance requirements
• Assess changes to an IS by performing periodic self-inspections, tests, and reviews of the IS program to ensure that systems are operating as authorized/accredited and that conditions have not changed; ensure corrective actions are taken for identified findings and vulnerabilities
• Maintain a working knowledge of IS functions, security policies, technical security safeguards, and operational security measures
• Experience working on DISA Security Technical Implementation Guide (STIG) implementation across multiple operating systems and applications
• Coordinate with Information Systems Security Manager, Facility Security Officer (FSO) and Contractor Program Security Officers (CPSO) to define, implement and maintain information security policies, strategies, and procedures
• Implement policies and procedures for responding to security incidents, and for investigating and reporting security violations and incidents

Qualifications

• Top Secret security clearance with current SCI eligibility
• Five (5) years of experience working in an IA-related field and/or five (5) to eight (8) years of experience in IT with a heavy emphasis on systems administration
• In-depth knowledge of Microsoft Windows OS (client and server)
• CompTIA Security+ or higher-level DoD 8570.01/8140.03 certification
• High School Diploma or GED Required
• Experience with A&A documentation and system authorization artifacts
• Knowledge of federal security requirements and mandates (e.g., RMF, JSIG, Federal Information Processing Standards (FIPS), National Standards of Information Technology (NIST))
• Experience with security architectures, firewalls, and network access
• Experience with risk managed downloads, IS sanitization and destruction, PEDs, contaminations, incident response, virus scanning, privileged user access, and hardware/software configuration management
• Excellent oral and written communication skills
• Strong organizational skills and ability to manage multiple tasks concurrently
• Excellent time management, scheduling, and organizational skills
• Ability to work well independently as well as follow detailed instructions for completing tasks
• Must be a team player and be able to work within all levels of a project team
•  

Desired Skills:

• Bachelor’s degree in Computer Science, Information Technology, Information Security, or related field
• Certification in one or more of the following: ISC2 Certified Information Systems Security Professional (CISSP), ISC2 Certified in Governance Risk & Compliance (CGRC), ISC2 Systems Security Certified Practitioner (SSCP), ISACA Certified Information Security Manager (CISM), GIAC Industrial Cyber Security Certification (GICSP), GIAC Security Essentials (GSEC), GIAC Cyber Security Leadership (GSLC), CompTIA Cybersecurity Analyst + Certification (CySA+), or CompTIA Advanced Security Practitioner + (CASP+)
• Eight (8) years of experience working in an IA and/or IT-related field
• Experience with Linux operating system (RedHat Enterprise Linux)
• Experience using security hardening, collection and assessment tools (e.g. SCC, Nessus, Splunk, etc.)
• Strong Microsoft Windows background with some knowledge of UNIX/LINUX
• Knowledge of various computer software applications, hardware platforms, networking components and LAN/WAN architecture
• Familiarity with security procedures while working in a SCIF/SAPF environment
• Experience working with Defense Counterintelligence and Security Agency (DCSA)
• Experience with eMASS
•  

#mtsi

#LI-AS1

#LI-Onsite